We have a need to prevent windows update traffic to flow thru our network on certain dates. Basically this type of traffic will clog our mpls bandwidth preventing other type of traffic to flow. We are using up to some part QoS on out routers but it not working all the time. Eg, we put in ip address of one windows update server but updates are pulled of the other, then you enter second ip and updates are coming from third, etc.
I would like to explore other, a bit more controllable options utilizing Cisco's technology: ASA 8.4, IronPort WSA.
In summary, to create a traffic policy, not specific to IP addresses, that will kick in at certain date/time, be on for certain period of time and turned off after (automatically).
Any ideas, suggestions how to tackle this issues would be greatly appreciated.
Regards,.