[CLUE-Tech] Activity monitoring
skipworthy at realivetech.com
skipworthy at realivetech.com
Sun Oct 12 18:46:11 MDT 2003
Russ-
Exactly what kind of activity did you need to track? Are we talking about
just visit's to prohibited sites, or what?
Two Ideas-
1) the easy thing would be to use SNORT or Ethereal on the gateway port- you
can set it up to filter for, say HTTP requests or something, then take the
logs and do text-sorting and list activity in whatever format you need (for
example, by MAC or IP address) this would be somewhat inelegant, but easy to
set up and manage.
2) If you *must* use MS, they have a thing called ISA (internet security and
something ) server. It does filtering, web-proxy and activity logging, in
the usual pretty but not efficient way.
----- Original Message -----
From: "Russell Glissmann" <rglissmann at rfgsolutions.com>
To: <clue-tech at clue.denver.co.us>
Sent: Sunday, October 12, 2003 6:21 PM
Subject: [CLUE-Tech] Activity monitoring
> Has anyone any experience in logging Internet activity, especially from
> certain workstations? If so, what is required both hardware wise as
> well as software? The workstations are Windows 2k Pro (you didn't want
> this to be easy did you?). Currently this client is not running a
> firewall or proxy server, but that is something that is in the works.
> Any idea is appreciated, ideas that are doable are even better! :-)
>
> TIA
> Russ
> --
> Russell Glissmann <rglissmann at rfgsolutions.com>
>
> _______________________________________________
> CLUE-Tech mailing list
> Post messages to: CLUE-Tech at clue.denver.co.us
> Unsubscribe or manage your options:
http://clue.denver.co.us/mailman/listinfo/clue-tech
>
>
More information about the clue-tech
mailing list