UC Irvine Cracks Down on P2P

grendel20 writes "After years of dialup, one thing I was looking forward to the most about college was the fast ethernet connection. Upon arriving at UCI though, I found my kazaa speeds to be way below subpar. Apparently, UCI has limited access for all P2P programs with this fine piece of hardware. Now what do I do?" Whether you agree with what UC Irvine is doing or not, I do applaud them for publicizing and being straightforward about it. Upstream entities can implement these sorts of controls without telling users, and it's tempting to do so because it will reduce the number of user complaints.

Cry like a baby

That's what you can do.

Sucks that the college is using it's bandwith for education, eh?

Re:Cry like a baby

[TheCarp]

Ok.... I will answer pretending that you go to the University I work for... The problem isn't YOU sucking down MP3s and movies. Its not even everyone else doing it. Its you SHARING them.

You may notice that accessing someone elses PC on the network here goes pretty quick, but loading a web page is slow. You may try to ssh in from outside and find that slow.

Why?

Because inbound or internal bandwidth isn't a problem at all... its outbound. Its not the people AT the university using the network... its the people outside who are finding the stuff you are sharing and downloading it that are causing the vast majority of the bandwith usage.

All in all the answer, which I hate to give, is that people at dorms need to stop with the offering to the world of files on p2p systems. The bandwith usage is too great and it does most certainly hinder other peoples use of the network.

Your tutiton and that of your fellow students "pays" for the network (actually your tuition may pay for alot less than you think, the life blood of most Universities is the endowment, some schools could even run off it and not charge Tuition, Harvard being one example)

Sharing MP3s with the world is essentially allocating resources to people not in the University community. Now I don't mean to say thats bad or there is no good in doing it, however, when it becomes the single largest use of bandwith and interferes with others use of resources... then something bad is certanly going on.

Now here, rate limiting is defense of our network as the traffic caused by p2p filesharing is causing some of the routing equipment to run right up against its max capacity, and thats not a good way to be. If we try to throw more bandwith at it, we will just be more attractive to people downloading, and usage goes up to utilize the bandwith... rate limiting is the only scenario with a win there.

So the next time you can access across the boarders of your own network with reasonable speed, be glad p2p is rate limited. And the next time you can downlaod something via a p2p, again be glad that it wasn't shut off completely.

Bandwith is a limited resource... students need to learn to share it and use it wisely.

-Steve

Re:Cry like a baby

[macdaddy]

Yes and no. The problem isn't just with users sharing files. It's also has a great deal to do with them downloading files. Not from a piracy/copyright standpoint but from bandwidth standpoint. P2P consume an ungodly amount of network bandwidth if left unchecked. I have yet to run across a P2P app that can limit the speed at which it downloads. I've yet to run across a run of the mill user that can set up QoS on their local desktop to limit how much their system consumes. P2P is a major problem. Frankly we universities don't give a damn if you download copyrighted material. We do give a damn when a handful of users collectively consume all availabe I1 resources, costing us big $$ in fatter pipes.

How do I know all this? This is the job I do. I spent all of yesterday and this morning working on a Packeteer Packetshaper 4545. We don't block P2P. That's not the stance we felt we should take. We do however greatly limit the amount of bandwidth P2P applications can consume. We allot more to P2P after business hours. It's really interesting to watch response times plummet when I reboot the PS. For about 20 seconds, ping times climb to 800-1000ms. If I disable bandwidth shaping (which I did for about 10 minutes this summer to make a point during a meeting about the PS) P2P apps climb to the top and sufficate everything else. I can tell you that every regent's Unv in my state that is using a PS is severely limiting the amount of outbound bandwidth that's alloted to applications like P2P. Here at this Unv I give a average priority of 3 to all traffic classes that have known uses on campus. I set the default priorities to 2. I then raised the priority on HTTP and FTP to make them more responsive. I also gave a high priority to terminal emulators like SSH, telnet, and tn3270. Time sensitive applications like NTP and DNS were given a higher then average priority. I use garunteed partitions on different classes or groups of classes to kick start them or limit their consumption. It has worked extremely well for us.

P2P is a major thorn in our collective sides when it comes to the network. I don't think it should be blocked. I don't think that at all. I've gone to great lengths to ensure that it isn't entirely blocked and that other applications have the resources they need. I do think it needs to be kept under control so it doesn't hurt everyone else, those few students that actually use their connections to research and learn. Users that try to get around our bandwidth shaping by setting up tunnels to their buddies cable modem, using NNTP, HTTP, or FTP simply aggravate us and push closer to charging per megabyte transferred. I hope that day never comes.

Re:Cry like a baby

[macdaddy]

We researched both products before we bought the PS. We relied heavily on the experiences from our peer regent's Unvs. The killer was one regents Unv in particular that first tested the Allot. It died. It couldn't remotely keep up with their pipe. It couldn't do time sensitive rules either. It also was very dumb, only filtering on basic TCP/UDP port numbers. That same Unv tried a PS that wasn't rated for their pipe and it mananged to keep up. That was about 2 years ago (1.5 years before we bought a PS). They've greatly expanded their product line for fatter pipes since. We also couldn't find any users of Allot anywhere nearby. In the end it was unamimous that we go with a PacketShaper.

Now this isn't to say that the NetEnforcer won't be able to do these things in the future or even that it can't right now. It just means that their initial offerings failed to satisfy our peers that tried them and ourselves. If they can catch up a little bit, I'd bet they'd have a fine product. A little competition in this new branch of the tech sector is welcome. Keeps prices competitive.

So what's the problem?

[Clue4All]

They're allowing your to pirate music, movies, and software. Most schools block all P2P programs and that's the end of the story. What could you possiblye be complaining about?

Re:So what's the problem?

[McCart42]

It's not about "piracy" - it's about bandwidth being a limited resource, plain and simple. If they didn't use packetshaping, other services would be slowed down or made unusable. They've reached the limit of offcampus bandwidth. It's at a point where they're saying: "what do we cut" -- and P2P traffic is the first to be limited. It's the best solution, since it uses up 99% of the bandwidth to begin with anyway. What, would you rather slow down webpage requests to increase bandwidth?

There is simply no way to allow for everyone using P2P and keep a usable network at the same time, without increasing costs. I've seen what happens when Napster overloaded our network, and after they applied packetshaping the usability was 100% better. And during off-peak times, Napster speeds went back up, so you could still do your downloading in the mornings.

Re:So what's the problem?

[cscx]

My school used to do this (not anymore, but its bound to be back). The packetshaping was done by user IP address -- when you surpassed a 24-hour limit, you started to have packet loss to the Internet (not campus servers).

The statistic about 10% of the users using 90% of the bandwidth is correct. It's not fair to everyone else.

Re:So what's the problem?

[timeOday]

The statistic about 10% of the users using 90% of the bandwidth is correct. It's not fair to everyone else.

True, but the 80/20 or 90/10 rule also goes for most things, including resources much more expensive than bandwidth like professors' time, or for that matter water usage - most anything, really. Even if you charge per unit of service, it's still true.

Anyways, I think bandwidth shaping is exactly the right response: instead of cracking down on certain content or applications, address the problem of bandwidth usage directly.

If ISPs would get their acts together and implement the same thing, we wouldn't need slow upstream bandwidth or restrictions on servers for residential cable networks, either.

Re:So what's the problem?

[Arker]

I agree this is the best thing they could have done, given the situation. What's really nice is that they are so upfront about what they are doing... I can see how to bypass the bugger right off, can you?

What they've done isn't so much to limit bandwidth for p2p, as to place an IQ test in the way of actually using it... now I know as you read this a little light is going off in your head, you grok what I am saying? Good. Now shut up about it, that's right, don't post it. Those that need to know will figure it out, but if you post it for the rest then they'll have to change their system again and that won't be any fun for anyone. So zip it. ;)

Re:So what's the problem?

[mbogosian]

It's the best solution, since it uses up 99% of the bandwidth to begin with anyway. What, would you rather slow down webpage requests to increase bandwidth?

This just in: the second performance optimization the school will perform is to limit bandwidth dedicated to serving pages where the referring page originates in the "slashdot.org" domain.....

Study

[HuguesT]

That's what you have to do now. It's For Your Own Good (tm).

Not Alone

[_LFTL_]

UC Irvine is definitely not alone in this. A number of schools are simply throttling the speed down on common P2P ports. My brother's school, Denison, does this. The student's solution is usually pretty simple though: Move to a client that uses port 80. Most of the time the speed is restricted only by port and unless they restrict web access this will get one back onto the autobahn.

Re:Not Alone

[dytin]

Washington University in St. Louis also slows down Kazaa. But it is not a problem really. If I want to get files, we have set up a local hub using direct-connect. It is incredibly fast (I usually get speeds of 2-10 MB/sec (yes, that's megabytes))It is fast because it is all within the Wash. U. network, therefore none of the precious external bandwidth is used up. The only problem is that somethimes the newest songs are not available to be traded yet. But for us, blubster circumvents the slowdown because blubster uses udp, not tcp like most p2p software. Blubster can only be used to download songs though.

Device

[siliconshock.com]

Packetshaper Actual Device.

Education opportunities

[PFactor]

Now you can use your brain to find a way around a problem. Welcome to the world of education!

Freedom versus usage

[cadfael]

Sounds like UC Irvine is trying hard to balance the freedom of the Internet (they aren't stopping you from downloading via P2P) versus the needs of the academic campus (sorry, getting the latest rip of Brittney just isn't as important to academia as you think). Its a pretty nice solution without a moral judgement. As Michael points out, they are straightforward about it, and their arguments are cogent. Its a good solution to a real world problem.

Right on.

[nougatmachine]

University of West Florida does just this-they have a firewall that completely blocks all P2P software ports. Kazaa, gnutella, whatever, it just doesn't work. I think I have the only solution - get Timbuktu installed on my home computer, remotely download files from my cable modem and then upload to my college box. Ta-da!

Re:Right on.

[fault0]

timbuktu? why not using something like vnc/tightvnc?

I remember tb2 five years ago, heh.

Re:Right on.

[El+Kevbo]

You *are* aware that people from UWF (other than students) read Slashdot too, right? :)

Kevin Guidry
UWF ResNet Coordinator

Re:Right on.

[0x0d0a]

And have their own P2P solutions, I would assume? :-)

What "crackdown"?

[TheOnlyCoolTim]

Crackdown would be if they banned all P2P and punished anyone caught trying to use a Kazaa or WinMX port...

This is just maintaining the health of the network by not allowing it to become clogged by a few users of bandwidth-heavy applications, just like when I unplug my little sister's Cat5 from the router when she lets WinMX use the whole house's upstream bandwidth.

Tim

Re:What "crackdown"?

[TheOnlyCoolTim]

I used to do that, since it was easier, but now they've figured out how to change their IP....

Tim

Says it all...

[chill]

"In the past, about 2% of the residents would use over 90% of the available bandwidth causing slowdowns and poor performance for everyone." ...

"We found that over 50% of the network traffic leaving the housing network headed out the Internet was from one single file sharing application. """ ...

" 1. All network traffic to/from any UCI computer, web site or server is untouched. There are no controls and no need to shape this, as it is "educational" traffic. Further, as it does not go to or from the Internet, we don't have to pay for it. As long as it stays within the UCI network, we can take advantage of the high-speed connections and equipment we have on campus."

My congratulations to UC Irvine. This sounds like an excellent solution.

Re:Says it all...

[saforrest]

First off: dude, apples and oranges. You're comparing people starving to death from economic sanctions and soulless global capitalism with people who are unable to download porn quickly.

Next, from my rather lefty perspective, I find an inordinate number of the Slashdot crowd irritatingly libertarian. It's all about perspective.

Re:Says it all...

[Skwirl]

Personally, I'm the opposite. I don't care about the parity of wealth issue, and I think the university did the right thing limiting the P2P bandwidth.

In other words, the people you disagree with are hypocrites, but your contradictory opinions are alright.

Plus, you're ascribing these two contradictory opinions to your opponents without any proof that anybody actually thinks that way. Can you say, "strawman agrument?"

Re:Says it all...

[Osty]

In other words, the people you disagree with are hypocrites, but your contradictory opinions are alright.

Nope, I'm just as hypocritical. Takes one to know one, as they say.

Re:Says it all...

[Patik]

" 1. All network traffic to/from any UCI computer, web site or server is untouched. There are no controls and no need to shape this, as it is "educational" traffic. Further, as it does not go to or from the Internet, we don't have to pay for it. As long as it stays within the UCI network, we can take advantage of the high-speed connections and equipment we have on campus."

RPI has a similar setup, and even encourages inner-campus file sharing by providing servers and making it an officially part of the computer science department. These sites only allow you to access them if you're on campus, and I bet it saves lots of Kazaa bandwidth because of all the MP3s and warez that are available right in the dorms.

Re:Says it all...

[earlytime]

mozilla IE (not just popup) killer

Some schools don't own up to it

[user32.ExitWindowsEx]

Furman University has a PacketShaper on the dorm LAN.

It literally ruins any protocol that isn't HTTP.

They don't own up to its existence.

I applaud UC Irvine for admitting the PacketShaper's presence on their LAN.

Re:Some schools don't own up to it

[fault0]

> It literally ruins any protocol that isn't HTTP.

Then they aren't using a packetshaper. They only depriortize packets, not "ruin" them.

UCIrvine = twits

[drwho]

about a year ago, someone had stolen a password on a system of mine and I found them in the act, connected from UCIrvine. Phone calls to campus police, the IT department, and the IT security desk (ha), were worse than fruitless. They said I was being attacked by nimda, and when I told them no, I was running linux and this was a different sort of thing, they ignored me and passed me up the chain. NOTHING came of my reports except about $10 of phone calls. UCI is now firewalled from my network. Maybe it should be firewalled from the rest of the net, as they don't know anything about security and don't want to learn.

Re:UCIrvine = twits

[Schubert]

Wow, just because they didn't help you with YOUR problem you dismiss them completely? If the police didn't do anything about it, tough nuts.

And why are you blaming them for not knowing security? _you're_ the one that got your password stolen. Be responsible for your own information.

Re:UCIrvine = twits

[drwho]

And the funny thing is...you never needed to make a phone call. I'm sure an email to security@uci.edu and/or abuse@uci.edu would've been just fine.

I didn't use email because I didn't want to tip off the scoundrel in the case he had somehow obtained root, however unlikely that was (well, this was in the days when OpenBSD felt secure).

High Tuition sucks

[Darth_brooks]

Bandwidth costs. Irvine might not care whether or not you spend you nights looking for that bootleg edit of "a walk to remember" or the deleted scenes from "crossroads", they do care about that formerly phat T3. You pay for that bandwidth in tuition (As well as for the rest of the campus' utilities.)

You complain about kazaa (with all of it's lovely spyware) being slow. The rest of campus was probably complaining about *everything else* being slow.

Here's a tip: go to school to get an education. Or at least leave your dorm room once a month. Download speeds become irrele....er... not as important once you discover girls and beer.

Re:High Tuition sucks

[ninewands]

I agree. I'm an admin at a large university and I've seen the damage P2P does to our network. It doesn't materially slow down on-campus commections because we have a fiber backbone. However, we have a limited bandwidth (big limit, but it's a limit) connection to the internet (I don't have access to our i2 connection, darnit).

DURING BUSINESS HOURS (read, when the student body is supposed to be in class) some 40% of our BACKBONE bandwidth is taken up by P2P running between the dorms. Personally, I'd like to see all that traffic blocked at the layer 3 switches, but that will not happen in an academic environment.

The net result is that if I connect to my Linux box at home to perform a security test on a Unix box at work (you're not testing unless you're attacking from an uinauthorized host), I have a terminal with a frame rate problem ... . I can literally type 6-10 keystrokes faster than the packets can get through the network. In addition, I occasionally have to download 3-4 isos (new Linux/FreeBSD/Solaris version). A year ago, before they moved the dorms to the new backbone, it was a piece of cake ... I could DL a 3 CD-image set for Solaris in about an hour. Now, it's an overnight job (if I'm lucky).

In short, quitcherbitching ... there are people on campus who have a productive use for the bandwidth ... the fact that UCI is permitting ANY P2P is (in my mind) a very tolerant step. If I had my way, I'd block it all.

(and yes, I am one of those terribly libertarian slashdotters, but the ownership of a resource implies the right to control it's use)

Re:High Tuition sucks

[tester13]

(and yes, I am one of those terribly libertarian slashdotters, but the ownership of a resource implies the right to control it's use)

Er, but isn't the student a partial owner of the resource? I'm not a college student, but one of the issues I have with college internet services, is that you have no choice but to pay for the system. Seems to me they have alot more right to the bandwidth than a libertarian system admin :)

Anyone know of any schools that will let you opt out of computer usage, and corresponding fees? Can I buy more bandwidth from the school?

Re:High Tuition sucks

[ninewands]

Quoth the poster:

Er, but isn't the student a partial owner of the resource? I'm not a college student, but one of the issues I have with college internet services, is that you have no choice but to pay for the system.

The student is no more the owner of the resource than an ISP's customer owns the resources he/she uses.

further quoth the poster:

Seems to me they have alot more right to the bandwidth than a libertarian system admin

The network exists for the primary purpose of furthering accomplishment of the university's core functions (e.g. education, communications and research). My work is directly in support of those functions, so no ... the students DON'T have a higher right to the bandwidth. Besides, I've got you coming and going on this point because I'm also taking courses at the university, and no, unlike several large universities, this one does NOT give discounted/free tuition and fees to staff. If I take a course that requires computer accounts, I have to pay the computer usage fee for that course for the privilege of using the acccounts I have to have to do my job.

The poster then inquireth:

Anyone know of any schools that will let you opt out of computer usage, andd corresponding fees?

No

and further inquireth:

Can I buy more bandwidth from the school?

Seems I have heard of a few schools where this is done, but it's more on the order of a penalty charged for using more than a certain quota per month.

Re:High Tuition sucks

[tester13]

I hope you didn't take my response as a personal attack on you. It was tough in cheek.

The thrust of my point, was primarily that colleges usually force students to pay a computer usage fee, even if they never touch a computer or use any bandwidth. That hardly seems fair.

Not Uncommon...

[jwilhelm]

This is not an uncommon practice. Here at URI we have a Packeteer box installed between the Residence Hall network and the edge routers. It limits bandwidth to P2P applications to 10MB/s (burstable to 20MB/s). This is on a network with 60MB/s to I1 and 65MB/s to I2.

Interesting...

[TheOnlyCoolTim]

The number 1 point there seems an encouragement to set up an in-college P2P system...

This would be a great feature for P2P developers to add - the ability to first search an internal network for your file before resorting to a search of the wider internet.

Tim

Re:Interesting...

[Psx29]

This would be a great feature for P2P developers to add - the ability to first search an internal network for your file before resorting to a search of the wider internet.

The GPL-licensed gnucleus gnutella P2P client has a version specifically for this.

From the site: "Gnucleus LAN - If your college blocks gnutella use this to create an internal network for you and your friends. General rule is if you can play network games over your school network, gnucleus will also work. This version can be run on the same computer as the internet version."

Re:Interesting...

[cheeserd00d]

that's exactly what we do here at my school, rochester institute of technology...we used to have a direct connect hub over internet2 with other i2 schools but then it got to the point that us on the direct connect hub were using 90% of the i2 bandwidth.

solution: blocked i2 traffic thereby keeping it all internal...there were already enough users from our school that it didn't make too much a difference, and the more people that heard about it the more that got on....now we have an insanely fast DC hub just on the internal network where you can find just about anything!

Re:Interesting...

[TheOnlyCoolTim]

It would be more convenient if they would make it all one client, which had a default "search LAN" button, and another button to click to search the internet.

But it is something to look at when I get into college.

Tim

It's funding.

[Skadet]

The fact that they allow p2p at all - even giving up to 10mbps for it - is good news.

The UC system is funded (as I found out as a student) mostly by tax money, Federal grants, Private funding, etc. Student fees are just a drop in the bucket. This said, the cost of bandwidth comes straight from the limited, non-student-funded budget, leaving less money available for other IT programs, such as campus-wide wifi.

Personally, I'd take a wifi program over p2p anyday.

What he really meant

[Frac]

(Tongue in cheek of course) ;-P

grendel20 writes "After years of using dialup (because I'm too cheap for cable/DSL), one thing I was looking forward to the most about college was not the girls, not the college experience, not the beer, and DEFINITELY not the higher level of education, but the saturating of the fast ethernet dorm connection by downloading things I'm too cheap to pay for. Upon arriving at UCI though, I found my freeloading movie/porn/software experience to be subpar. Apparently, UCI has limited access for all P2P programs with this fine piece of hardware. Now what do I do? Go out and not sit in front of my computer?!?!?!?!"

What other schools and students have done (both go

[DaHat]

At my school, Dakota State University in Madison South Dakota, every time unusually large amounts of traffic showed up on non standard ports, the school would throttle it down with their packet shaper. This was fine and dandy until students realized this and changed the port used to the one port that no school would throttle, that's right, our good friend 80.

This has caused an even bigger problem because the school sees the dorms using obcene amounts of bandwidth on 80 and to control it they have limited the dorms to just 5 megabits. In theory that is fine, until you count 800 students in the dorms and there being 13 megabits of pipe for this school. The Packet Shaper has destroyed the ability of students to use the internet from their rooms as it causes huge latency, in the order of 4.7 seconds at most (that I've seen) and averaging around 2 seconds (yes, seconds). Normal programs can't handle such latency and send out more and more requests while thinking the earlier packets were lost. P2P programs on the other hand have no problem dealing with large latency.

Speaking as a student who is suffering because of the P2P abuse of others, be good, if you use the P2P stuff don't leave it on and be responsible otherwise the school may crack down on the students harder then you ever thought was possible.

P.S. To make this post I am connecting to the internet via an old dial up modem as it is faster then the connection in the dorms, my school was once rated as the 8th most wired college in the nation by Yahoo... oh how the mighty have fallen.

Umm...who cares?

[EchoMirage]

My school has been doing this for about a year now. It was necessary to eliminate the bandwidth hogs who clogged things up with their P2P apps. As a non-P2P user, I got really tired of having my web requests drag so freshmen could download the latest Britney Spears videos.

This is pretty standard across the board - traffic shapers are a good way to keep P2P traffic to a minimum without frivolously trying to cut it out.

In related news, the routing technology for these things is pretty cool, though certainly not new. A story about DIY traffic shapers would be a better front page story than this, Michael.

Packet SHapers

[Dark-One]

This is very widespread. I am the network admin at a small college, most places I talk to have a packetshaper in place to limit bandwidth. We bought ours this summer so we could reopen the P2P networks. Boy am I regetting this. We went from totaly blocked last year to slightly above dialup speeds this year and I have never heard the end of it. Usualy showing people the graph that shows our uplink at 97% 24hrs a day stops people from complaining but not always. What most students don't understand is that bandwidth is limited, very limited, and they are not the only ones using the network. When we have an outage I don't usualy hear from students first its from faculty who cant work on their research. I do applaud them for being so upfront about the bandwidth controls, but I would be interested to hear from their Admins as to how much this has helped their network. I know from my personal experance that it has prevented our network from just grinding to a halt.

Well, at least you admit it..

[CBNobi]

After years of dialup, one thing I was looking forward to the most about college was the fast ethernet connection.

Sorry, but tough. Just like what happened at USC, they have every damn right to do so.

Perhaps you should start looking for other positive things about universities - like, maybe, a higher education?

Since Censorship is evil....

[FrozedSolid]

and so is the RIAA, it doesn't seem too wrong to explain a workaround. I've never tried it, but kazaa has the option of tunnelling through a SOCKS proxy in the Firewall tab of the settings. I assume that would bypass any filtering server. If it works, you are limited by the bandwith of the proxy. You could also consider using a different P2P client; such as overnet or giFT.

Re:Since Censorship is evil....

[Sycraft-fu]

The Packeteers are layer-7 shapers, in that they actually look at the packet and can determine what it is, based on signature, not on port. That's the whole reason anyone even looks at them. I can tell a Cisco 6500 to limit traffic based on a given port, but it's only based on port. The Packeteer is a little smarter and can match signautres against a known file and limit on that.

Re:Try going to the record store? think again

[drwho]

I live in Cambridge, down the street from Harvard, and I can tell you that in spite of the abundance of used / alternative record stores I don't find much worth buying. Small stores cater more towards the Three Dog Night crowd than the stuff like Hypnoskull, Noisex, MS Gentur, P.A.L that I want to buy. When I did find a P.A.L album, finally, in Newbury Comics, I did buy it -- but that was 4 months ago and I've never seen anything else since.

When I was in Europe I did spent a fair amount of money at festivals. Good albums were about 13 EU. A much better deal and much less frustrating.

So, I'll still keep to using P2P and buy stuff when I can.

Resx (etc.)

[Sgs-Cruz]

At McMaster U. (Hamilton, ON, CA) they use a program called ResX. Think of KaZaA (in fact, suspiciously EXACTLY like Kazaa...) except it only works on the LAN. Think DivX DVD-rips in 40 seconds, 5-meg MP3s in 3 seconds. Now that's tasty.

McMaster actually paid a company to write a Kazaa-clone that would only work on the LAN. It was cheaper than bandwith-shaping the Internet pipe. However, I doubt all universities will do this.

My recommendation to you is to find other P2P people and set up a Direct Connect hub or something similar. Make it only avaialbe to people within the university.

Good luck!

-cruz

Re:Resx (etc.)

[0x0d0a]

Take a look at femfind

Re:Resx (etc.)

[MikeFM]

Make it a real-world assignment for your upper-level CS students. It really isn't hard. You can write a decent P2P program in a day or two in Python and give it a web-based UI so that the handfull of geeks who want to install it can do so and their friends can access it via their web browsers. It could even include the ability to work with nutella or some such network as a bonus but cache all downloads in it's own LAN-wide system so that things only have to be downloaded once and there is nothing much to upload.

I wonder if they'll get sued

[anthony_dipierro]

Therefore, of the 60 mbs total bandwidth, 5 - 10 mbs is set aside for P2P.

Sounds perilously close to contributory copyright infringement to me.

Re:I wonder if they'll get sued

[Sean+Clifford]

Sigh. Not *everything* on P2P is copyrighted materials. There are those who make our own music and videos and want to share them. I'm sure that's the tack they're taking on this, and I think they're right.

Re:I wonder if they'll get sued

[anthony_dipierro]

Not *everything* on P2P is copyrighted materials.

That didn't save napster.

Re:I wonder if they'll get sued

[God!+Awful]

That's the first thing that occured to me as well. I can't believe you got modded as troll by some idiot moderator who doesn't know the difference between suggesting that something might happen and advocating it.

-a

Re:Wasted opportunity

[npietraniec]

He can probably go out and see a show and still have plenty of time to download Britney Spears' latest MP3. It will probably take all of 2 minutes.

Excellent!

[Mike+Schiraldi]

This is great news! So many stupid universities just blocked P2P altogether. UCI smartly set things up -- important stuff gets high priority. Your neighbor doesn't have to deal with slow access to a class website because you're downloading the latest Lord of the Rings bootleg. You can still get the bootleg; it just takes longer.

5 - 10 Mbps is nothing to sneeze at. I had a 10baseT card for a long time, and it seemed rocket-fast.

Besides, if you want to download porn fast, get it from the web. :)

Lose-Lose Situation for P2P

[ShadowDrgn]

Either universities limit P2P traffic or the internet connection gets completely saturated, at which point your P2P speeds (not to mention everything else) suck anyway.

Georgia Tech manages to limit P2P uploading only so you can still download at full speed. I don't use P2P at all, but the limiting they put in place this semester has worked perfectly in keeping lots of bandwidth available and pings low. Prior to the rate limits, we were saturated 24/7 and couldn't even ping local Atlanta sites at less than half a second.

Re:Vulnerable to http tunneling

[Dark-One]

The only problem with that is then you will have an abnormally large amount of data going out on what appears to be an HTTPD port. The wonderfull thing about the packetshapers is they also give you nice colorful graphs that show the top 10 users, and you can even break it down farther than that. While this may work you would still have to be very careful about how much bandwidth you are using. I personally keep tabs on our top bandwidth users to make sure they are only using legitimate services. IE we don't allow the students to run FTP or HTTPD servers because our bandwidht is so limited.

I wish my school had that...

[fireboy1919]

So there I am...up at 3AM trying to work on my homework, which involves doing research.

Naturally, I'm looking at IEEE XPlore, which lets me see nearly the entire archive of IEEE papers in PDF format over the internet.

So I start the download...and it goes at 5kb/sec. Its like I'm on a modem. Why? Because a few people in my dorm are wasting my time uploading music and software illegally.

Later, I go out to my class and realize that I forgot to put my homework on my school account. So I start up an sftp session and start downloading it. But it goes at BYTES per second. Why? Because people in my dorm are wasting my time sharing music and software.

Why don't you have some curtesy for your fellow students and stop wasting their time when you waste yours? The internet at school is not for your personal enjoyment; its so that you can be a better student.

I left the dorms and got a house, and now I'm using cable modem in a neighborhood almost without students (which means without file-sharing). Even though the cable company has less total bandwidth than the school, latency is down and connection speeds are up compared to living in the dorm.

Glory be

[Frothy+Walrus]

Can you believe this shit? Complaining that they can't spooge Gnutella packets all over the network 24 hours a day. Meow meow.

I have a box on a popular dorm network in Cambridge, MA. The net had become basically unusable because P2P file-sharing programs were chattering all the time. Even ssh connections to my machine were sluggish. Then the school decided to rate-limit the P2P traffic to 1Mbps. All problems vanished.

Free ethernet is a good thing. If you're at a hip school you may even be able to run servers on your machines. Recognize a good thing when you've got it!@

No moral judgement?

[anthony_dipierro]

So do you consider hosting providers which allow spammers to use their networks to not be making a moral judgement, as well?

Bravo for UC Irvine if they can avoid getting sued for what they're doing, but they are most certainly making a moral judgement.

Re:No moral judgement?

[Idarubicin]

Bravo for UC Irvine if they can avoid getting sued for what they're doing, but they are most certainly making a moral judgement.

Er. Sued? UC Irvine is just enforcing the terms and conditions of their student internet use policy. I haven't seen it, but I'm sure they've got one, and I'm nearly positive it looks like the ones any other university has. They're not censoring anything; they're not blocking anything. They're just prioritizing.

You want fast and cheap internet access? You accept their terms. You want to use university resources? Fine. Use them for academic purposes. Shocking. The administration will even wink and nod at some 'personal' use. Sensible. It means that people won't be trying nearly so hard to get around restrictions.

Value judgement? Well, sort of. Some would call it setting priorities. The campus pipe is only so wide. Does first call on that bandwidth go to people who are reading journal articles, sharing experimental results, and--heaven forbid--learning? Or does it go to the guy in the room down the hall who's too lazy and too cheap to go out to rent a copy of The Matrix?

In the majority of workplaces that I have experienced (and most have had an academic slant) as well as my university, network administrators have cared not one little bit about what I did with surplus bandwidth. As long as you don't screw things up for people doing real work--that's all that matters.

Re:No moral judgement?

[Peyna]

I think it should be up to the taxpayers funding the University if they want to pay for the 5mb pipe dedicated almost entirely to P2P.

I would liken it to an employee using the company copy machine for personal use. The company is paying for something it shouldn't be. In this case, the state is paying for something they shouldn't be: use of their network for purposes not in line with the school's mission and purpose.

Re:No moral judgement?

[The+Famous+Brett+Wat]

Your argument would be more compelling if spam were at all similar to file-sharing. In the case of spam, we have one party using the network to directly annoy thousands or millions of other network users. In the instance of file-sharing we have consensual communication between network users; a grievance only arises if the particular act of sharing infringes a copyright, and then the aggrieved party is typically a third party.

A closer analogy with regards to spamming would be to say that neither email nor file sharing are inherently wrong, but they become wrong when used to do certain things such as spam or infringe copyright. I'm sure that the university's AUP disallows both of these inappropriate uses of the facilities, and action is taken when they are notified of problems.

If the file-sharing side of things is bandwidth-limited, then that's a matter of practical resource management rather than morality.

I should point out that I don't necessarily consider infringing copyright to be an intrinsic "wrong" -- more of a "technical wrong". Any action which infringes copyright breaks the law -- but this has little bearing on whether the action is fair or unfair, right or wrong.

Re:No moral judgement?

[anthony_dipierro]

Of course they're supporting piracy. And not only are they supporting it, they're profiting off it. Like I said, this is no different from an ISP which ignores reports that its users are spamming. If they just allowed random traffic on any port without restriction it would be one thing, but here they're specifically allocating traffic to P2P.

Yes, P2P could be used for legitimate purposes, but you know what, it isn't. If students really want to trade legitimate files, then the school should set up an FTP server for that purpose. It'd be a much more efficient use of bandwidth, too.

Maybe they just accept the fact that there's no way to completely block P2p without wasting a lot of time and resources that could be better spent on real academic uses of the network.

It's not about completely blocking P2P. They've shown that they have the technology to block those ports. They're not using that technology. That's condoning the use of those ports.

You have no right to fuck up my connection

[browser_war_pow]

I don't use P2P, but the majority of the students at my university seem to. Our connection isn't worth a damn most of the time as a result. The method used to "block" P2P is to go after users who download XMB per time period. So I get a citation for downloading 5 Linux ISOs which are legitimate downloads especially since I am a CS major, but the assholes who download MP3s, DivXs, etc on a regular basis get a free ride. So far I am one of only handfull of people I know that has been given such a citation. And yes, it is the P2P users' fault and they should lose their connections for an entire semester. If it weren't for them, the university would never have had to implement such stupid regulations.

Re:You have no right to fuck up my connection

[stubear]

Ummm...perhaps he was trying out a few different distros? You did know there were different ones didn't you? It's not uncommon for one distro to have 2, sometimes 3 ISO's either so this could only represent two distros he was trying out.

Re:You have no right to fuck up my connection

[El+Kevbo]

Have you tried speaking to someone about the citations you received?

I'm the ResNet Coordinator at my university and I have yet to speak to any students this year about consuming excessive bandwidth. When I do (and I will - the year is young) I am more than happy to grant exceptions to students such as yourself who can show a legitimate need for the bandwidth. Your use of the bandwidth to further your education and learn is the *reason* that we pay for it each month! I wish some students like yourself would get sent to my office so I could copy your Linux & BSD ISOs instead of downloading them myself. :)

Re:You have no right to fuck up my connection

[Jeremi]

So I get a citation for downloading 5 Linux ISOs...

'Punishment' is the wrong solution, and only serve to piss people off, as seen here. Packet shaping (what UCI is doing) is infinitely preferable. The p2p bandwidth hogs still get to transfer files (albeit slowly) and everybody else gets their educational material without delay. Best of all, nobody has to live in fear of the Bandwidth Police knocking down their dorm room door. I'm glad some institutions finally 'get it'...

UCSC does it too

[ShaperofChaos]

I'm a student at UCSC and I know that they do it here. When I lived in the dorm all my friends who used Kazaa or Morpheus experienced terrible speeds (on the order of .5 kB/s). I knew that the school limited the bandwidth almost simply by the fact that you could download a file from a corporate site at 700 kB/s. One week in January, the limits were taken off. My friends were amazed at the speeds they were getting. Some of them went on downloading blitzes, some just kept going and thought it nice that things came faster. I however, started having serious issues just bringing up webpages. Even Google would take a few minutes to load. Every other process on the network was slowed down durring that week. Thankfully they fixed it and things went back to being nice and fast. I was thankful for the bandwidth limits (which were port based) because it kept the rest of the network from being bogged down. With a taste of what p2p could do to a network, I knew that it really was necessary. I confess though, that I used WinMX and was able to avoid any visible restrictions when I did my downloading.

Seems to be common now...

[NetJunkie]

I frequent the HardOCP networking forum and now that school is back someone asks almost EVERY day about this. Seems most colleges are starting to traffic shape P2P so you get .5KB/sec downloads.

I always love the "It's my right to have fast bandwidth at college!" arguments that turn up....

Oncampus sharing

[McCart42]

This sort of thing is going to spread nationwide. It's already in place at my school (Case Western Reserve University) as well - they implemented it last fall and it really helped network speed, at the cost of P2P offcampus.

What this means is we as college students have to start using oncampus sharing solutions like Direct Connect with oncampus hubs -- instead of searching national networks (fasttrack, gnutella), we can just set up college hubs like RIT students have done. Connecting oncampus will be orders of magnitude faster than connecting offcampus -- and nobody "shapes" those packets. The only potential problem is copyright infringement crackdown when the networks get popular enough - but as long as people don't share copyrighted music/movies, they're in the clear. Of course there's always FTP and IRC...

So Buy Your Own Connection

[mgbastard]

You have several options for your right to steal! You can continue to use Kazaa or Gnutella: you just need to find somebody willing to proxy your connection across the internet who is willing to blow their bandwidth on your connection. Look into ssh port forwarding. Don't expect to actually find somebody more willing to do this than your university. You could find some OTHER variety of electronic theft protocol. There are several out there, far more advanced, and some even more time consuming than even the common Peer to Peer services. (Hard to believe!) But isn't gnutella fun!

WE've been doing this for a while now!!!!

[Nicholas_D]

I am a sophmore at the University of Rhode island and I work for the department of networking and telecom services, we have a Packeteer packetshaper, had it for a while. We have a nice little setup here for a state University, 60megs from verizon and soon another 60 redundent megs from cox communications.. so we will have admin on one and students on the other. But our ratelimitting is: P2P Inbound 10megs 20 burstable Outbound: 5megs no burst.. no one needs to fill our pipe sending files to leechers outside our network so.. we let kids get whatever they want, but we dont let them fill our whole 60 meg pipe ya know.. Nick D

move off campus

[asv108]

I liked college so much, I stayed for six years. Let me give you a piece of advice, move off campus. You will have a much better time; you can do anything you want without having an RA nag at you. Its much easier to bring back girls to your apartment rather than a cramped dorm room with your roommate sleeping 5 ft away, plus you can get a cable modem without any bullshit restriction or TOS if you're in the right area.

Setup a local Lan Master Node

[BrookHarty]

Gnucleus allows you to have a gnutella master on a lan. I think its extermely cool they allow you to still use P2P. But a large place like a college should use local nodes, why waste bandwidth?

Save the bandwidth for CounterStrike. (-;

Hotline to the rescue!

[ThesQuid]

It would appear that Hotline is not one of the protocols this Packeteer device is designed to work with.
Plus Hotline can be configure from the server end to use pretty much any port.

Re:You dont.

[MikeBabcock]

It would help if people understood what was going on according to the document referenced; they aren't _cracking down_ on P2P at all (as some institutions are doing), simply downgrading its priority w.r.t. other forms of network traffic. If the network has 20Mb to spare, it may end up being used for P2P; but if it doesn't, P2P software doesn't get to fight fairly against E-mail, web browsing, and the all-important SSH session to fix the server backups.

Re:What other schools and students have done (both

[starman97]

I wonder if the packet shaper can throttle per MAC address, then you you divide by modulo 7 and allocate a weeks worth of bandwidth per MAC address. The mod 7 makes sure all the counters dont get reset on the same day. You want more data, pay for another MAC address worth...
No port restrictions, you use your weekly allocation in whatever way you like, once it's gone, they drop you to 0.5Kb/sec so you can still get email and text services, slowly.

What else did you expect for free?

[A+nonymous+Coward]

Free car?

Food ain't free, housing ain't free, why should entertainment be free?

Now what do I do?

Get an education, that's what you're there for.

YOU CAN'T TAKE MY MUSIC AND MOVIES!!!!!!

[Jon+Shaft]

Well, I work at a residential student helpdesk at Penn State University. The housing network here has chosen after a few years of purchasing more bandwidth (napster time) and the traffic still would shape up and take over a majority of the total traffic from the university. Instead of packet shaping solutions or banning the services totally, Penn State has chosen to place a bandwidth restriction system in place. They give students a 1.5 Gig upload and download (each) of traffic each. Students who go over the limit are restricted to 56k for a week, until they reach their 3rd violation. After you get your 3rd violation you get restricted for the rest of the semester to a shared 56k ... well if you get a fourth and final restriction you get shut off the rest of the semester. We also had a few people who've done that already. :-)

The students think is is unfair and totally immoral -- but they can't understand that bandwidth isn't cheap. All in campus traffic doesn't count, so some students have set up direct connect servers -- we've had dorm rooms mrtg's showing the buildings maxing out in just local traffic alone so internet traffic coming in wont even be an option...

I think Penn State made a good choice by giving them a limit. There's no slowdown on any of the p2p, but they have to be responcible and think and moderate themselves. It's just a shame though, because there are some legitimate reasons that would put you over the 1.5 gig, but the majority of comptuers I was asked to look at were all from the lovely p2p programs.

Stop bitching and get on with life

[skoda]

what do I do?

Like the title says, stop bitching and get on with your life.

Nothing Unusual

[ahecht]

Almost every college and university has blocked or limited P2P software from accessing the internet, simply because the bandwidth is too expensive. Here at WPI, soon after Napster became popular, internet connection speeds dropped to less than 10% of what they previously were. After blocking P2P software, bandwidth use dropped a whopping 87%.

However, they do allow, and even encourage, the use of GnucleusLAN, which allows access on the local network. Since it is all local, we get really high transfer rates (at least 400KB/s), and it doesn't degrade network performance. Yes, the files are at least a week old (many kids get files of Kazaa when they go home for the weekend), but I've been able to get more stuff than I ever could on the outside.

You have to remember that P2P software is very inefficient with bandwidth. As this article shows, P2P programs can generate as much as 150KB/s of downstream traffic even when you aren't downloading stuff.

So, in conclusion, stop whining (and good luck finding any other college which allows unrestricted P2P access). Just be lucky that you have any access to internet P2P -- most college students don't anymore.

Can someone tell me why this is news?

Why can't this be solved financially?

[King_TJ]

Originally, colleges and universities had fast Internet connections because they were really the only users other than government and research labs. As the net got commercialized, everyone seemed to get used to the idea that those fast connections should stay there for *all* manner of usage by students, including arbitrarily hosting file servers.

It seems to me that with cable modems and DSL typically only costing $40-50 per month - it's not that big of a deal to give each interested student their own such connection, and roll the cost into their tuition.

Leave the University T1 or T3 for internal use only (faculty and actual classrooms), and of course, leave some sort of ftp type file service active - so students can submit legal files to it if they need to distribute something (like an open-source program they wrote themselves?).

Any student who would whine and complain about this arangement is probably just hoping to run a high-speed server without ponying up the cash for the bandwidth - and that's not what college is all about.

Re:Why can't this be solved financially?

[Sycraft-fu]

Except that would cost WAAAAAAY more. At a large university, such as where I work (University of Arizona, Tucson) we already have a huge campus-wide architecture. All the buildings, including dorms, on the campus proper (and many of our other buildings too) are connected to our own infastructer. The phonelines terminate at our own Lucent 7/RE phone switch, and all the buildings have fibre optic cable that goes to a fast backbone. All the rooms are wried for eithernet. It would be a lot of money and hassle to try and undo all that and bring phone company lines into the dorms.

Besdies, blocking servers in the dorm rooms is reall easy: Reflexive access lists. The P2P stuff is harder but that's what devices like the Packeteers are for.

Re:Why can't this be solved financially?

[King_TJ]

No, I wasn't suggesting that all students should have the cost of DSL or a cable modem rolled into their tuition. I was suggesting that the colleges offer students the *option* of ordering this type of service, and having the monthly payments rolled in to their tuition.

(People paying with student loans find this quite attractive, many times, because they don't want to deal with another monthly bill of $40 or more while not working, or working only part-time.)

In fact, I'd think a large university could work some type of deal with the service provider to get students a slightly discounted rate.

As someone already pointed out, right now, students are often paying a big chunk for net access through the school's T1/T3, yet they're getting censored and limited access. Seems to me a cable or DSL circuit would be a better alternative for their dollar spent.

PacketShaper works at Layer 7, not just Layer 4

[jefftp]

The PacketShaper doesn't just throttle traffic based on what TCP/UDP port it runs off of. The PacketShaper actually analyses the data in packets to determine what they are, categorizes that traffic, then allows the administrator to apply rules to that type of traffic.

The really amazing thing is, the PacketShaper itself is easy to configure and run, and should the box lose power or be unplugged, it becomes a passive device. I'm constantly amazed by how easy it is to prioritize traffic with the little purple box.

The best part is, when you block ports, network bandwidth abusers look for a work-around. When you throttle bandwidth, the abusers usually assume it's just a lousy connection and usually don't give you much grief.

Re:UCIrvine = twits - precious

[jag164]

About a year ago, someone had stolen a password on a system of mine...

and later...

[UCIrvine should be] firewalled from the rest of the net, as they don't know anything about security

Pot enters room
"Hi, kettle, did you know you're black."

Why haven't major ISPs done this?

[Cerlyn]

I can understand why some colleges have seen the need to limit their Internet bandwidth usage. But the question I have is why haven't the more traditional ISPs done the same. The only organizations I know of selectively reducing bandwidth by protocol are colleges, schools, and univeristies. Earthlink, Comcast, etc. have not done the same.

• Dial-up: The dial-up ISPs likely could care less what you do. It takes about 10 minutes to download 5MB on a 56kbps modem.

  Some people I know of download all night on their modems. But given a single phone line, I would think most dial-up users would not.

• Cable/DSL ISPs: Instead of doing selective slowdowns, cable/DSL ISPs have resorted to slowing everyone's entire connection down. Instead of purchasing more bandwidth (thus reducing its eventual cost), they tend to restrict what customers already have.

  Some Cable/DSL ISPs also do port blocking, but this just results in a game of cat & mouse. Selective slowdowns likely are a no-no since many of their customers purchase such connections for online gaming (which maps ports all over the place).

• Backbone carriers: Interestingly enough, the backbone carriers typically care less what they carry. They get paid, even for spam (which many prohibit the origination of).

  Most co-location centers proudly boast about how they use less than 50% of their available bandwidth, so I speculate that backbone carriers have at least half that amount. While that sounds like everyone on the high end tossing money away, it makes me wonder why the other parties do not do the same in order to lower overall prices and make everyone happy in the long run.

Sing along with me

[Kashif+Shaikh]

What could you possiblye be complaining about?

MP3 Killed the Media Star

Clicking away downloading right to my hard drive
In my own home there was nothing that they could do
They filed the lawsuits at your university
System administrators block port 63
Because I utilize the bandwidth on the T

I bet your parents... never used WinAmp

MP3 killed the media star
MP3 killed the media star
Napster came and spread you far

And now we hang out at a foreclosed record store
We see the shelves that used to hold CD's and more
And you remember... the industry would go

You can't hear music... unless you pay us

MP3 killed the media star
MP3 killed the media star
In my Rio and on drive C
On free web sites and FTP
MP3 killed the media star
MP3 killed the media star
In my Rio and on drive C
On free web sites and FTP
Napster came and spread you far
Put the blame on CDR's

You are a media star...
You are a media star...

MP3 killed the media star
MP3 killed the media star
MP3 killed the media star
MP3 killed the media star

- poem by David Tiberio(Song available at http://robomusic.com/ in MP3 format)

University of California Bandwidth Layout

I was under the impression that all UC campuses had more bandwidth than this.

The main project page for the backbone system used in the UC system can be found at http://www.calren2.net

Here, there is also a layout of the connections between the different Universities http://www.ucop.edu/irc/projects/CRGN/

I currently go to UC Davis and was under the impression that we pretty much have an OC-12 (622mbit/sec) at our disposal, certainly the bandwidth I have been able to pull down even after the freshmen moved in last week seemed to confirm this. It's 8pm on Sunday and I'm getting 70-150k/sec, and during most hours of the day I have still been able to hit upwards of 700k/sec from sites like apple.com

Anyone who works with networks able to explain from the above links if my assumption about our bandwidth is incorrect?

UC Davis does not appear to use any sort of traffic shaping that I have noticed. The very few times I have used Kazaa I have been able to pull down up to 200k from good sources.

Better solution.

[blair1q]

Install a cache server for the "entertainment" traffic and connect it to the nearest backbone.

I mean, if your campus is so popular with the downloaders...

Truman does it too

[jpmkm]

Here at Truman State they throttle all p2p ports down to about 10% of the total bandwidth(not sure of the total though). There are so many damn many people using it thought that any one person only gets about .5K/sec. I don't mind though. Everything else is fast.

There's quite a bit of good stuff on the internal network though, and thanks to ShareScan, it's easy to get. Also, learn to use IRC. At least at my school, the standard IRC ports aren't blocked or throttled, so you can get everything you need at great speeds, if you know what you are doing.

Just remember -- it is their network

[blueskyred]

Bandwidth is not a right. If they say everything loud and clear (not buried in an EULA, tied up in legaljumble) then you pretty much have no right to complain.

Or, even better -- complain with your feet and dollars. Go to a different school.

why P2P on campus?

[glwtta]

I am not sure about anyone else's experience, but when I was on a residential school network it had all the music, movies and pr0n you could imagine, at FastEthernet speeds no less.

(-1, Redundant); (-1, Disinteresting) - whatever.

From the guidelines...

[di0s]

Peer to Peer (P2P) is given a lowert priority, and is limited to 5mbs, and can use up to 10mbs if the bandwidth is available. Therefore, of the 60 mbs total bandwidth, 5 - 10 mbs is set aside for P2P.

Uhm, 5-10 megabits per second seems pretty fair to me... it's faster than both DSL and cable modem. The part where they say it'll save the school and students literally thousands of dollars seems fair as well. Do you really need those fake nude Britney Spears mpegs that bad? =)

QoS Appliances Considered Harmful

[shalunov]

I believe that QoS appliances are harmful to long-term health of networks (the link points to a presentation I made at an Internet2 member meeting).

Schools need to control commodity network use (the per-bit charges of commodity providers aren't passed on to the users). QoS appliances are just a wrong way to do it.

To those who believe they are entitled to unlimited transfers from resnet because they {pay tuition|pay monthly connection fee|have a legitimate reason}: do you also think you're entitled to print 10000 pages per month on the department printer? If not, what do you think is the difference from using disproportionate share of network resources?

Commodity transfers aren't free or even cheap. The commodity ISP charges your university transit fees based on the amount of stuff that is transferred. If you're willing to let the school pass those fees down to you, it is reasonable to ask your school to let you use as much as you want. (Good LAN connectivity is a one-time expense and therefore in-campus transit is a non-issue.)

Re:What other schools and students have done (both

[Kunta+Kinte]

This has caused an even bigger problem because the school sees the dorms using obcene amounts of bandwidth on 80 and to control it they have limited the dorms to just 5 megabits.

that was a mistake on your netadmin's part for two reasons

(i) As someone else said, they could have still filtered traffic based on the protocol, or even class of protocol, it does not matter what port it's on. The packetshaper inspects the contents of the data portion of the TCP packet and determines the protocol from there. ( btw. the linux kernel has packet shaping code built in as well )

(ii)While using the shaper we found an interesting problem. Throttling creates a shit load of traffic inself. When the packet is throttled TCP resets and timeouts increase, the more traffic you're throttling, the more 'protocol overhead' traffic you will see. That traffic alone is enough to bring a network to its knees. This is likely what you're seeing.

Shaping can only do so much, the more you try to squeeze a large pipe using shaping, the more protocol traffic is generated, hence the more inefficent it gets.

Re:What other schools and students have done (both

[chhamilton]

Unfortunately, the PacketShaper is a little smarter than this... it doens't solely rely on ports to identify traffic. It actually analyzes the stream data as it passes through the system, and recognizes the individual P2P protocols in use (among hundreds of other specific traffic types and sub-types). Some P2P protocols are quite crafty and send their data over a seemingly innocent HTTP stream... but the PacketShaper catches those too... ;)

Actually, there are a lot of universities across North America that run PacketShapers for the very purpose of controlling P2P traffic. I work for Packeteer, and universities/schools have been an important customer since P2P networks blossomed...

Reeeeeeeally Sloooooooow News Day....

[soloport]

Should have been "From the Really Slow News Day Department".

Re:Wasted opportunity

[proj_2501]

That depends on what you like. The Middle East is a good place to start. That's on Mass Ave in Cambridge.

The Phoenix Landing has techno on Wednesday nights and drum n bass on Thursdays.

Saturday nights at the Cellar TWO BLOCKS from Harvard is free techno, but that's 21+

You can look up stuff on boston.citysearch.com, as well. If you're into electronic stuff, check out www.miscon.net. There's also some Boston area really dorky hip hop at http://www.donred.org (one of my everything2.com compadres!)

Conflicting statements

[Andy+Smith]

Notice that the explanation page says p2p bandwidth is throttled because it is "entertainment traffic", but games are given as much bandwidth as necessary if it's available. Games aren't entertainment?

Network File sharing

[Snuffub]

why not set up a server with phind or some varient running. I dont know how large UCI is but at my university of 4k students i can find any file i want on the network, it's just a matter of getting some way to search. I bet if you talked to your IT department they might even help you after you showed them how making network fileshares easy to search will cut down on the real culprit, off campus uploads/downloads.

The Correct Solution!

[omnirealm]

All I can say is, "Wow!" At my school, when Napster was hitting its prime, our IT department just flat-out blocked Napster ports, declaring an "emergency" procedure to protect our bandwidth.

Some students had some interesting opinions on the whole matter.

It has since been a couple of years, and they have extended their practice to blocking all other P2P ports. Then they moved us all behind a NAT firewall (without any advance notice) which left us from being able to connect to our machines from off campus. This provoked this student opinion letter from yours truly. :-)

In my opinion, the actions of our IT deparment have been largely totalitarian and insensitive to the issues at hand. If any institution should be the champion of enabling students to exercise democratic and free exchange of information, a university certainly should! Hopefully they (and many other schools) will seriously consider UC Irvine's approach to the problem.

QoS is the answer you want

[0x0d0a]

The answer, at least in my opinion, is via a QoS mechanism.

The problem is that you can't have students sucking down gigs of bandwidth to grab the lastest porn flicks off of the gnutellaNet, because it costs you too much to keep them and your "legit" users happy. So set up a QoS system. I'd probably like to have a quota of bandwidth that each person gets per month...and after they've exhausted that bandwidth, they only get network space if there's free space on the network -- their priority drops.
So if 128.2.154.2 is sucking down more than his fair share and exhausts his entire quota in the first day of the month. After that, his priority at the router gets knocked down to "two" and his performance suffers. If the network's already jammed, his packet is the first to get dropped. That way, you let people who want to do P2P do P2P, and keep the people who just want a snappy SSH server keep a snappy SSH server.

Since you don't really need real-time response (calculating used bandwidth once an hour in a perl script or something is more than enough), you can do this offline. If I were using a Linux router:

Set up iptables on each router so that you have a chain that sums the bandwidth used by each host in the network that it routes to. Hourly, poll each of the routers and get the latest usage statistics, and regenerate prioritization rulesets based on these. Send these back out to the routers.

Since you can do this offline at your NOC, you can do fancy stuff like sum all the bandwidth used by all the IPs allocated to a single user and stuff like that. Give each user 2GB/month, and if they want to use 1GB on their laptop and 500MB on each of their two desktops, that's okay too.

There is a few potential problems. Technically advanced students could try setting up VPNs. Shouldn't be a huge issue, just means that a slightly larger body of people get 100% utilization of quota.

IP spoofing is always a potential issue, but no end of problems can be caused by IP spoofing already, and the consequences aren't *disasterous* in this case -- if a massive flood of spoofed data is slipped by the sysadmin, the victim would just get somewhat worse performance.

Now, that assumes that the bottleneck is at the outgoing connection to your installation. If it's the LAN and your box is hooked up to a simple switch or hub...well, not much you can do there.

Finally, it's difficult for students to "find loopholes" in rulesets that detect whether software is P2P or not and take advantage of them. Many suggestions that try to rate-limit P2P traffic and P2P traffic alone are vulnerable to this.

That being said, it's also nice to run a big Web opaque proxy server with a policy of no logging (most people get leery of optional proxy servers if they log what they're doing). Also, if you have a bunch of hard drives sitting around, you can set up a Freenet node and do the same thing -- have a big local cache for users

Excellent point

[0x0d0a]

If someone "needs" 5 isos, it makes *far* more sense to talk to a local administrator ("You know, it would be really nice if we ran a local mirror of ftp.redhat.com" or whatever). That way, *he* sets up a mirror accessable to local users, the files get downloaded *once* at off-hours, and then they're accessable rapidly to any local users.

Do what we used to do...

[aquarian]

Instead of clogging everyone else's pipes, why don't you do what we all used to do, back in the stone age of the early 80s- walk down the hall, borrow a friend's LP or CD, and make a copy! We all had to tape them (yeah, I know barefoot through the snow, blah blah). You guys can rip and burn CDs in minutes.

Go on, it'll do you some good. Get off your fat, geek asses. Make some friends, interact for real, and actually SHARE some music.

Re:Do what we used to do...

[chegosaurus]

I don't think that will help him, cos the last I heard you couldn't fit haX0R3d copy of Photoshop 7 and American Bukkake 1 thru 9 on a C90.

My suggestion to the original poster as to what he do now, is, of course, Shut The Fuck Up. (TM)

Re:My ISP DISCONNECTED my service for "overuse"

[analog_line]

But I wont get disconnected at their discression unless I don't pay my bill.

If you believe that, I've got a bridge in Brooklyn I'll let go cheap.

Example of UCI's problem...

[Kaz+Riprock]

Here at Boston University where I'm a graduate student, during the summer, I get ping times around 90 msec to a specific server off of campus. Now that students are back in the dorms...350 msec to the same server. This is highly a factor of day of the week and time of day (i.e. during a weekday around noon....I get back around 180 msec...students are in class).

From the article...

[Vengie]

" 1. All network traffic to/from any UCI computer, web site or server is untouched. There are no controls and no need to shape this, as it is "educational" traffic. Further, as it does not go to or from the Internet, we don't have to pay for it. As long as it stays within the UCI network, we can take advantage of the high-speed connections and equipment we have on campus."

Download the source for gnutella. Roll your own gnutella net for just UC Irvine IP's. Distribute among the student populace. (perhaps make your website on your "students" webserver, or whatever your analogue is, a hq for said application) Watch as you get blazing download speeds from all your friends, you are regarded as a campus hero among students and administrators are happy because they are saving on external bandwidth costs. Oh, and you'll get laid a lot. ;)

Read my response before rebutting

[0x0d0a]

I wrote that post specifically saying that the approach that UC Irvine was using (trying to detect P2P traffic) had holes, and should be moved to a quota/priority system.

I *also* listed some of the ways to bypass such a system, which, despite your claim, was not the question in the article.

Finally, I wasn't responding to the article directly. I was responding to another post, which was *also* talking about detecting and limiting P2P traffic, making my post quite relevant.

Redundant my foot.

Weakness of P2P

[silverhalide]

I would hope P2P will eventually evolve to overcome this limitation. If there are P2P programmers out there, how hard would it be to have the clients realize who's on your local subnet and who's outside of it? Give priority to connections inside the local (and higher capacity/cheaper) network, and automatically throttle down connections that go through routers, and safe everyone a little grief.

The way it is now, the software has to evolve to keep the RIAA on its heels... How much of this traffic hogging can we blame on all the crap files they're spewing out everywhere? I say sue the RIAA for using up the bandwidth of all the universities, if it wasn't for them, we'd only be downloading stuff once!

Fortunately, here at Georgia Tech, we've got gobs of bandwidth (OC-12) and they don't seem to scream too often about P2P use.

We are looking at the same thing at U of A

[Sycraft-fu]

We have 2 Packeteer 8500s now and are probably going to start using them soon. Instead of limiting P2P traffic to a specific amount, we'll probably just use the priority feature, P2P traffic will have a lower priority than all other traffic. So long as the links aren't full, the traffic will not be affected, but if the links start maxing, the Packeteers will start slowing P2P traffic, allowing the other traffic to continue at its normal pace.

Personally, I think it's a really good solution, I don't think banning P2P outright is good since it DOES have legitimate uses and people will always work around a ban in some way or another BUT it can be a real strain at times.

The priority feature the Packeteers offers is great because if it works as advertised (and it seems to) you don't have to be a jerk and set any real hard limits on anything, you can just set up a prioity scale so that the important stuff always gets what it needs.

Re:We are looking at the same thing at U of A

[macdaddy]

Well, prioritization along doesn't work that well. I tried that initially. Didn't work too well. By the time the P2P flows that were already consuming the link were slowed, you've already added latency to the legit traffic trying to get through. Plus allowing all the P2P at an unchecked "speed" will cost you big $$ in bandwidth. If you're big enough to afford (or need) 2 PS 8500's, you probably have +60Mbps links for your campus. I have a PS 4545 for my campus. Take the advice of the existing PS users (join packeteer-edu mailing list), use a partition to limit a folder class full of P2P apps besides applying priority policies. You'll like it better in the long run. I don't block P2P. I don't want to block it either (well, today I do after dealing with the KaZaA v2 problems but..). I do want to keep it down to a reasonable level. Also, I suggest you also use dynamic partitioning to allocate a small slice (16kbps or so) to outbound P2P connections. Otherwise the harsh restrictions you'll eventually levy on outbound P2P will keep inbound P2P connections from happening. In other words, if the request can't get off the campus because of your outbound rules, inbound isn't going to happen either. Slice it up to allow it to continue working. Oh, and one last thing. Let the PS's simply discover traffic for a while. Take the time to organize your class trees. Then after a couple weeks of that, run a whole bunch of reports. Show how much of your bandwidth is P2P at various times of the day. Then enable shaping. Wait 30 minutes and run the reports again. Keep those 1 hour graphs (half on/half off) for future presentations. You'll want them. I forgot to do that. I let it classify for 1.5 days before I decided I was ready to shape. I was ready but I didn't think to get the graphs before hand so I couldn't use them later for presentations to suits and techs. Good luck. Don't be a stranger now.

Re:We are looking at the same thing at U of A

[Sycraft-fu]

"Plus allowing all the P2P at an unchecked "speed" will cost you big $$ in bandwidth."

We pay a fixed cost per month for our links, regardless of usage.

"you probably have +60Mbps links for your campus"

Dual 75mbps links actually, and a 155mbps link to I2. The Packeteers are on the two I1 links, as the I2 link has plenty of extra.

"Oh, and one last thing. Let the PS's simply discover traffic for a while."

We have. They haven't been doing any limiting so far, just sitting and looking at traffic.

"Good luck. Don't be a stranger now." :) Thanks for all the advice, but I'm actually not the Packeteer guy, I don't mess with them at all. I just know the same about them that all the operations peopel do. I'll pass your advice to the guy in charge of them.

Re:We are looking at the same thing at U of A

[Sycraft-fu]

Roughly $25,000 each. I'm not sure the exact figures, I'm not the guy who bought or is in charge of them but it was that, give or take a couple thousand.

ISPs may start doing this

[Wansu]

Once the RIAA gets wind of this they'll try to get the high speed ISPs to put something like this in place.

It's sad

[7-Vodka]

But UMass amherst has been doing this for over a year. The worst is they also place lower priority on the bandwith coming from the doorms than their own oit company. Leaving me with a 999 ping to most quake servers.

Open to the world - kind of

[harmonica]

Nice... Although I wonder why people with external IP addresses (like me) are allowed to use the search engine to find out that a lot of copyright-infringing material is shared. I can't download the actual files, but RIAA / MPAA might want to use this to put pressure on those responsible for running the network.

My suggestion: put some IP-level restriction on the search as well.

UCI Bandwidth. Yup P2P Is Whack

[Nicholi]

I used to live in the dorms last year. Even then they have had the bandwidth to all P2P networks limited to 2% of the total bandwidth. Of course you are going to have extremely slow speeds. However there are many alternatives that you should be well aware of. If you believe the extent of your music/movie/bootleg collection should be found on Kazaa then you haven't been tapping the correct resources. I myself was harassed many a time by the Residential Networking Admin, Ted Roberge. All of us who liked to use lots of bandwidth knew him well. Here is one of the many emails I have received from em.

>I am sending you a graph showing your IRC >bandwidth use for the last 24 hours. The graph >is primarily for IRC, not web surfing, e-mail >etc etc.
>I do not block or limit IRC use, however, I do >monitor the top users and as you are clearly >using more than your fair share of bandwidth, >especially your uploading to the internet, I am >asking you to exercise more concern for >bandwidth use and cut back considerably. Your >peak usage for irc consumes almost 10% of all >available bandwidth for the entire housing >network. Excessive bandwidth use affects all >users on the housing network. If this >continues, I will have no other choice but to >limit your bandwidth.
>Thanks in advance for your cooperation.
>Best

Figure it out pal...P2P is dead for us EDU's. If you want to get shit at good speeds use IRC, find some connections, get hooked up with a few ftps, serve as a dump. Of course all this must be done while still avoiding our lovely resnet admin, because he will harass you.

Tech has a better solution :)

[timdorr]

We've actually been keeping our bandwidth down at Georgia Tech via a neat little student-run/built Samba crawler, know as BuzzSearch.

We also limit outbound connections to 50k/s.

These things combined means a lot more people are using our "free", internal bandwidth to download, rather than saturating our Internet line. Pings are WAY down from last year, and transfer speeds to legitimate things are up. It's amazing how people act when you show them the wonders of stuff on campus (about 3TB and counting :D )

Hard to have any sympathy

[fishbowl]

I'm paying $40.00 a month for my 768K DSL line,
$100/month for internet service [including domain hosting, static IP's, no BS from the ISP], $3600/year for tuition, close to that for books, I'm working 8-10 hours a day, doing calculus homework 3 hours a day or more and it's very damned hard to have any sympathy for the poster's bandwidth problems.

Legal problems of internal file sharing systems

[harmonica]

In some comments of this discussion it was proposed to have an internal file-sharing system for the university's (and I don't mean UCI specifically) students so that people have access to a variety of interesting files while no external traffic is generated (well, some people will have to get fresh content by other means, but everything needs to be retrieved only once).

Anyway, while this is beneficial for all participants (those paying the traffic bills and the students), can the network people allow this? They must assume that copyright-infringing material is shared if internal transfers rise to giga- or terabytes per day... Can they be legally held responsible for looking the other way?

This isn't censorship...

[Arker]

...AND you'll have to have a better plan than that to beat the packeteer.

It can be beaten, and I'm sure there are one or two kids in those dorms smart enough to figure it out, but it's not nearly as easy as what you are thinking.

Anyway, it's not censorship at all, did you even read the article? People running filesharing software on the LAN have effectively DDOSd their peers (pun intended) on campuses worldwide, it's a real issue. UCI has taken a very balanced approach to the problem, unlike a number of other Universities - they are NOT prohibiting filesharing, they are NOT trying to punish people that use a lot of bandwidth - instead they have introduced a rather sophisticated piece of hardware that is configured to allow filesharing, but not to allow it to compete for all the bandwidth, just around a third or a quarter of it, with the rest reserved for other uses.

I applaud them. And no, I'm not going to tell you how to get around the packeteer. If you figure it out, I urge you to keep your mouth shut too. If more than one or two of these kids figure it out, UCI will be forced to take more draconian measures, and I don't want that to happen, do you?

I will point out that one way to work with the Packeteer, rather than against it, is to organise Gnucleus Lan/Overpeer etc. - remember that your bandwidth from point to point on the LAN is NOT being restricted, just the incoming and outgoing traffic, so if you set the clients up so that they only go outside of the LAN when necessary you'll get better performance.

WWU, too...

[Mobius20]

I attend Western Washington University, and we've been using Packeteer for (if memory serves) a year now. Our situation is a little different, let me explain why.

First off, Western isn't a small school, but with about 12,000 enrolled, it's not small either. About 3,500 live on campus and on the WWU LAN. The internet connection afforded to the residence halls is in the form of a fractional T3, of which we lease a 1.5mbyte/sec connection. Back in 2000, when school started we had less than half that connection, and Napster was at its peak. It's probably not necessary to say that our network connection was completely laid to waste by the massive amount of traffic requested of it.

When Packeteer was introduced at the beginning of last year, things seemed mostly normal. HTTP traffic moved along nicely. Then, ResTek (the group who handles the residential network) decided to limit our traffic to 300MB a day, and if you went over it more than once, you would get your port pulled. However, this was made tolerable because from 2am to 10am, you could rape the internet as much as you damn well pleased without repercussion.

After massive complaining, though, they started implementing this homebrew traffic limiter which sharply cut your bandwidth as you downloaded, and quickly made online gaming impossible.

However, we've began to cope with it. We have local game servers, and a local DirectConnect hub which has become a good place to hang out, meet people, and exchange files.

I'm curious though, what kind of connections other colleges of our size have. 1.5MB/s seems quite measly for 3,500 people (granted, not all of them use the net for much more than email).

If you head over to ResTek's webpage, check out the bandwidth section, specifically the FAQ and see what you all think. I'm curious.

why doesn't someone create p2p over http?

[supernova87a]

If people are getting annoyed by these bandwidth shaping restrictions, I'm surprised someone hasn't created a software that employs the http port? How would they restrict traffic then -- Or does this not work for some reason?

Re:why doesn't someone create p2p over http?

[ColdForged]

Let's kill some karma...

If people are getting annoyed by these bandwidth shaping restrictions, I'm surprised someone hasn't created a software that employs the http port? How would they restrict traffic then -- Or does this not work for some reason?

Are you thinking before you type? "How would they restrict traffic then," as if it's ordained by God that you must be able to download the latest Tool CD. Indeed, how would they restrict the bandwidth if everyone's traffic looked the same, whether they were viewing research data or slinging Korn rips? I'll tell you how:

IT guy #1 - "Hmmm, the only thing going on is HTTP requests, but 99% of them are coming from dorms and our researchers are getting latency in the 2 to 5 second range. What should we do?"

IT guy #2 - "This was easier when we had a traffic distinguisher so that we could just ratchet down the P2P networks. Now everything looks the same."

IT guy #3 - "Oh well, guess we'll just shut down the dorm lines, that way we can at least get something done."

You think what's currently happenning is draconian? Remember what that access is for, and be humbly grateful that you can even do what you're currently doing.

Re:why doesn't someone create p2p over http?

[supernova87a]

geez, sorry if my message came off the wrong way... i'm not like, "fuck the man for shaping our bandwidth and not allowing us to download DVDs". I actually don't use any p2p, and was just curious why things haven't shifted this way...

Re:What other schools and students have done (both

[Sarin]

They could force everybody to use their proxy servers for port the web, by denying all access to external networks. That way no p2p program can get thru.

What do you do now?

[krinsh]

Study. Get an internship and prepare for the real world. Play a multiplayer game.

I am all for the University's right to limit what traffic is being moved over their network. I do believe that they should limit their restrictions to, say, perhaps an 18-hour window every day and relax things at night and perhaps on Sunday - there can't be that many legitimate reasons that other network traffic should take precedence at those times. "Bandwidth costs money"; but if they are paying for a number of specific connections; unless their transfer is capped by their provider then I don't see restricting any student's use. They are paying tuition and it includes network access - granted, maybe 'network access for academic use' but if that is the case then all non-web use that cannot be proven it is not recreational should then be banned; and perhaps a plan should be set in place that users that exceed a rate cap or would like their network use outside of school-related activities then pay a premium. If we adults can pay outrageous rates for broadband; you kids can get a taste of it too.

Re:Cornell's plan

[extra88]

1.2GB isn't a whole lot, less than the size of 2 CD images. I would hope they provide a good mirror site.

CD image, 650MB = $3.25

That's not what would get me, what would get me is listening to my mp3 radio stations. Plus that's not something you can host on the internal network.

128Kbps streamed media 1hr/day for 30 days = $9.00

I'm sure I listen a lot more than 30hrs. a month.

Re:SSl baby

[EllisDees]

Seriously. At this point it is almost trivial to add encryption to any p2p program. I can only wonder why all the big guys haven't started doing this already.

Pay for InterNet connection

[peter303]

Like the rest of us.

A Network Engineer Speaks out!

[Dharkfiber]

I have a general problem with draconian measures that many institutions implement. If the bandwidth is available (i.e. it is not being used) then it should be made available. There are many tools that allow flexible real-time traffic shaping. If the network admins were intelligent they would have implemented one of these solutions to make everyone happy. You know its easy to look down on people especially when they are younger. This makes it easy for many (including other young people) to defend such actions by saying that another person's usage of the network isn't valid. That is very sad a short sited.

Been there, done that

[carambola5]

After spending the last 2 years in the University of Wisconsin-Madison's dorms, I can attest to how crappy these packetshapers really are. True, everyone on our floor was swapping files on the network, but the implementation was horrible! For example:

I tried to forward some X packets from the CAE building so I could work on a circuit design project. The latency/speed was so poor that the connection was completely lost! Two VERY important points can be brought up here:

1. This was over SSH, so the port being used was 22. They had the audacity to limit port 22 action.
2. This was completely over the campus' internal network. The packets didn't touch the external Internet. Before the packetshaper, I was getting speeds of 16Mbps from the same server!

So, I called up DoIT, our IT guys, and complained. "We'll look at that right away." Sha right. Never happened. Had to use sneakernet to do all my homework on the opposite side of campus (~1 mile). Not fun in Wisconsin during the winter. Yay technology.

Grendel620...

[cascadefx]

Cry me a river...

Working at a college with roughly the same bandwidth, I can tell you from experience that when our traffic went unchecked Housing's draw destroyed the network. Culprits? P2P.

Let's not even get into the legality of trading music. Personally, I could care less. However, when it every student's dowloads are glogging 40-70Mbps of downloads ALL DAY LONG, IT IS A PROBLEM! Our email servers would not recieve off campus email. We couldn't sync off-site copies of our DNS. We couldn't access off-site Web sites, much less download updates and drivers for our systems or do any online journal research.

Ever since we blocked and/or limited P2P traffic, life (network wise) on campus has been a lot nicer. If you want to do P2P... hook up your modem, pay for an account with an ISP that doesn't limit downloads and have at it... that way only you have to deal with the slow speeds, not everyone else.

P2P use on campus is a classic illustration of the tragedy of the commons.

Solution for computer guys...

[El+Camino+SS]

I know there have been a lot of people whining about all of the slowdown at college campuses, and I've got a way to get around it.

Put up a flyer that says: 'I FIX SLOW COMPUTERS ON WEEKENDS.'

Now you might be up to your ass in free work for a few days... but you probably will meet ALL THE GIRLS IN THE ENTIRE DORM... because 1) no self-respecting man in the world will admit to a slow computer and 2) everyone thinks their computer is slow because it can't anticipate their desires and 3) everyone has already burned their cash.
Looking for women requires the max interaction you can get. Don't cast your fishing pole once and then get upset and throw it in the water when you don't catch a fish. Pretty soon you'll be nkee deep in women, you won't even remember what a computer looks like. Don't obsess, if you're interested ask for coffee and be polite and gracious. Old civility mixed with young enthusiasm is a great combo.

If you play it right, you might end up with a beautiful veterinarian with some serious domestic skills... it worked out for me.

Think about it. Use the Force.

UCInet metrics

[vjl]

This site shows exactly how much bandwidth resnet [ie: reshsg] uses [as well as other depts, and other stats]:

UCInet metrics

While I do work at UCI, I'm in a different dept. and don't know much about the workings of resnet. I do feel sorry for the support folks there, though, as most of the hacked windows boxes and klez-infected PCs come from reshsg.uci.edu.

UCI is quite attentive to security issues, as soon NetBIOS blocking at the border router will go into effect. This will keep off campus crackers from trying to break into windows PCs that have windows file sharing turned on.

Now if only commercial ISPs could learn a bit from UCI's policy...

/vjl/

Re:What other schools and students have done (both

[stienman]

I bet your school is NOT using packet shaper - which analyzes the packets, not just the ports. They are likely using switch management to limit port usage.

Believe me, an HTTP packet does not look like a kazaa, morpheououoeos, etc packet.

Sounds like a bunch of incompetant admins to me.

-Adam

Re:What other schools and students have done (both

[macdaddy]

You can't fault the PacketShaper for your delays though. The person that administrates it really needs to learn more about it. I run a large PS myself, a 4545, and have eliminated latency issues by setting the PS up correctly. Using tcp/80 for P2P applications WILL NOT fool the PS into thinking it's HTTP traffic. The PS uses all 7 layers of the OSI model to classify traffic (yes, it can even classify by MAC). The PS can and will find KaZaA traffic on whatever port it wants to use. It can't hide. Now if the administrator took matters into his/her own hands and wrote really generic rules that used the default ports for various P2P apps, then yes moving to port 80 will save your ass. The admin needs to spend some more time with his/her PS.

Prior to installing the PS, a political decision was made to cap the dorm subnets via our provider's onsite router. This did NOTHING but hurt our residence halls. P2P apps were still used and they consumed every last bit within the cap as expected. Dorm residents couldn't load simple webpages. ICQ couldn't even maintain a connection. It did nothing but penalize those in the cap. Meanwhile the P2P usage by faculty/staff grew immensely. Go figure.

Re:UCIrvine = twits - precious

[drwho]

OK maybe this isn't clear:

It was not my password, it was a user's account on a system I administer. As I force users to login with ssh, this had to be stolen in a local attack.

So, no this is shiney stainless steel pan calling kettle black ;)

Re:Um, who's the twit here, exactly?

[drwho]

Who's the flaming newbie whose password was "stolen?" I'll bet it was a good one, too -- maybe "college" or something really esoteric, like "irvine". Of course, having only attended the local LUG for a few weeks, you hadn't enough time to absorb to proper levels of, um, sophistication... I'll bet that by now, you're using passwords like "tux" and "userfriendly", that no one would ever be able to guess. You do use Linux, after all! Tee hee! [geocities.com]

There are active measures against dumb passwords. This password was not guessed, it was intercepted.

lets see

[geekoid]

blah, blah, blah, can't download non-school related material via the school network very quickly, blah, blah,blah.

jeez, let me cry you a river.

Which U of A?

[srvivn21]

Alabama, Alaska, Arkansas or Arizona?

Just curious.

Re:Which U of A?

[Sycraft-fu]

Arizona.