Hi there, quite a broad question really...

Most of my user base has a mixture of 2860 & 2862 routers but one of my clients has recently moved to a 3900 (fw1.4.1) as they now have a gig over gig fibre circuit.
I would like to cut down the abuse the users make of the speed/system... understandably it is primarily a HR issue but I just wondered what restrictions I can put on from the backend.

These restrictions would only be for certain groups of users...

Stop the use of private VPNs from within the network (users are downloading torrents etc, some use private VPN services)
Stop the use of Spotify
Stop the use of Steam (gaming)
Stop the use of catchupTV
Restrict bandwidth to certain services like YouTube etc and/or ban for certain users

Would be interesting to know, along with the above, what other restrictions you might have on your 3900 or other routers.