Here are some links to freeware that may help with what you need.
http://www.spiceworks.com/
Manage Everything IT... for Free!
You want a network you can manage, not a network that manages you! You wish you could have it... without spending a fortune. Your wish is granted.
The IT Tools You Need.
Spiceworks combines everything you need to manage IT in one easy-to-use application:
Software inventory, network inventory, PC inventory. Inventory every IT thing you manage. Network monitoring, Exchange monitoring, license monitoring and more. Stay alert! Asset reporting, inventory reporting... share a report. Report to your heart's content! Helpdesk & IT Portal. Let 'em submit a ticket! Now you can track every IT task and project.
The CATCH is that these free resources are supported by adware. There is also a paid ad-free version.
Kerio Winroute firewall
http://www.kerio.com/kwf_h
Features include
Deep inspection firewall
VPN, VPN Client & SSL VPN
Anti-virus gateway protection
Surf protection
Content filtering
User-specific access management
Fast Internet sharing
VoIP and UPnP support
Internet monitoring
Mikrotik router software seems to get little publicity or attention, but it has a multitude of excellent capabilities
http://www.mikrotik.com/
Mikrotik's freeware app, "The Dude" is awesome enough that it should convince you that Mirkotik router OS is worth a try.
http://www.mikrotik.com/th
Just a few of the Dude's features include
Auto network discovery and layout
Discovers any type or brand of device
Device, Link monitoring, and notifications
Includes SVG icons for devices, and supports custom icons and backgrounds
Easy installation and usage
Allows you to draw your own maps and add custom devices
Supports SNMP, ICMP, DNS and TCP monitoring for devices that support it
Individual Link usage monitoring and graphs
Direct access to remote control tools for device management
Supports remote Dude server and local client
Runs in Linux Wine environment, MacOS Darwine, and Windows
Mikrotik Router OS RouterOS is the operating system of MikroTik RouterBOARD.
It can also be installed on a PC and will turn it into a router with all the necessary features - routing, firewall, bandwidth management, wireless access point, backhaul link, hotspot gateway, VPN server and more.
Main Topics
Browse All Topics
by: richrumblePosted on 2008-11-30 at 05:53:32ID: 23063121
That's a tall order... Let's start off with a truism, Security is a process, not a program. So to best secure your users overall, I'd recommend best practices. The main best practice is to not allow users to be admin's of their own machines.
http://beta.experts-exchan
http://xinn.org/win_bestpr
If you want an appliance, I'd recommend the Snort (sourcefire) devices, they are far and away the leaders in traffic identification and prevention. http://www.sourcefire.com/
Depending on how much info and the type of traffic you aim to block/keep track of will depend on which product you choose. The IPS can do what you've outlined above, but you have to configure your windows users to use a SOCKS proxy or place the Snort device inline with your internet connection.
You can also do these things cheaper, have a look at SafeSquid and use ClamAV (winclam if you use windows version), forcing users through a proxy that have AV scanning allows you to catch many Virii as well as use black-list's, keyword filters and even force google/yahoo safe searches: http://www.safesquid.com/h
The last price quote I saw for Safesquid was 975 for 400 users. They also offer a server appliance. Bandwidth managment: http://www.howtoforge.com/
Lot's of how-to's on howtofogre for safesquid...
-rich