Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 8931 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Looking to 'group' kids multiple devices and apply both time constraints and weekly data quota

John Maytum

So kid A has

MacBook+Android Phone+iPad+Windows Computer+Xbox+3DS+Amazon TV (in my day I just had a soccer ball and was happy).... :)

Ignoring that for a second I would ideally like to create some rules which state

Access to that group of devices is only available 8-10pm Monday to Friday then 10am-10pm weekends

During 1 week there is a maximum download total accross the devices of 100Mb. Kid gets cut off after that

Streaming Apps (Netflix/twitch/youtube etc) are limited to SD traffic levels for all users

Unless it is me of course - in which case I want 4K streaming of videos (the wife probably gets that as well)

Visitors to the house get a set amount of bandwidth - 512kbps

In an ideal world I would define the kid A 'group of devices' by either mac address or static IP address. Then there is no login required (not available anyway for all devices). 

Is this possible? Goal here is to stop kid using machines when they should be doing homework (ignoring phone 4g connection....) and stopping them leaving twitch streaming 1080P for 12hours a day killing my provider data cap.

 

It looked like XG would be the way to go due to the user policies verses UTM. This will be a new install though so either would be good.

 

Tolax

 

 

 



This thread was automatically locked due to age.
Parents
  • 0

    Thanks for the links. Got pretty close to getting this running. The gotcha though seems to be the client-less devices. For example a TV media player which can generate large amounts of traffic by streaming crunchyroll/netflix etc.

    I can manually define the media player by MAC/IP and restrict its access to X kBps via Traffic Shaping. There is no option though I could see to limit the client-less device or group to a particular data total (so 500MB per 7 days). 

     

    Anything I am missing here or is there no way round this client-less issue? I'm running in bridge mode.

     

    Tolax

     

  • 0 in reply to John Maytum

    John,

    inside the Web Menu > Surfing Quota you can define the amount of MB and time a device is allowed to consume. Have a look at the online documentation:

    http://docs.sophos.com/nsg/sophos-firewall/v16011/Help/en-us/webhelp/onlinehelp/index.html#page/onlinehelp%2FSurfingQuotaPolicyManage.html%23

    Thanks

  • 0 in reply to lferrara

    HI , 

    Quota Management is Applicable to Client based user , for Clientless you cannot apply the Data transfer and Surfing Quota . But you may add addtional restrictions such as . 

    Application filter : Apply a Schedule on the Streaming Media category and allow it for certain time in a Day or week.  

    Web Filter : Same is applicable but would prefer application filter as Netflix is a App based as well.

    Internet Access policy on the Clienless user: Allow certain window to allow internet access. Eg between 8PM to 10PM and so . 

    Hope this would help 

    Thanks and regards

    Aditya Patel |  Network and Security Engineer.

Reply
  • 0 in reply to lferrara

    HI , 

    Quota Management is Applicable to Client based user , for Clientless you cannot apply the Data transfer and Surfing Quota . But you may add addtional restrictions such as . 

    Application filter : Apply a Schedule on the Streaming Media category and allow it for certain time in a Day or week.  

    Web Filter : Same is applicable but would prefer application filter as Netflix is a App based as well.

    Internet Access policy on the Clienless user: Allow certain window to allow internet access. Eg between 8PM to 10PM and so . 

    Hope this would help 

    Thanks and regards

    Aditya Patel |  Network and Security Engineer.

Children