Solved

Ras clients and the internet.....

Posted on 2002-04-18
9
283 Views
Last Modified: 2013-11-29
I am using win2000 adv server.
I have RAS dial-up clients that connect to my network
and access the internet from there. This is pretty much the same as an ISP/Customer relationship where the whole purpose of them connecting to my network is to gain access
to the internet. Now here's the catch...I want to be able
to see where my ras clients are going on the internet. I
would like to be able to see the URLs of ALL the sites they visited, Or something similar, Also, maybe even how
much time was spent at each site. Does win2000 adv server
have anything that would contain this info, and if not,
Where can I get some free software to install on my server
that will give me the info I want?

PLEASE DO NOT LOCK THIS QUESTION BY PROPOSING ANSWER!!
Leave a comment so others can do the same, and I will
accept one of the comments as answer.

Neil D
0
Comment
Question by:cMan
9 Comments
 
LVL 11

Expert Comment

by:geoffryn
Comment Utility
Windows 2000 does not contain any built in facility for logging this kind of RAS traffic.  What kind of connection does the server have to the Internet?  The firewall or router might be able to provide some of this information in conjunction with Software like Websense.  Another option might be to install ISA server on the 2000 box and allow the proxy to log the traffic.
0
 
LVL 1

Expert Comment

by:SimTekSystems
Comment Utility
I don't know of a free product that will do what you want, however Surf Control's SuperScout will do monitoring as well as filtering. I have installed this solution for a number of clients, it is a solid solution, but it is not cheap.
0
 
LVL 5

Expert Comment

by:dcgames
Comment Utility
The easiest way to do this is to use a PROXY server.

All access to a particular application would be routed through the server. The server is able to intelligently examine the traffic because it knows what it is.

To a router, gateway or firewall, it is mostly a bunch of packets. To a proxy server, it is a web page being retrieved, or an e-mail being sent, or a telnet session being established.

The Microsoft proxies are not reputed to be very good, and are not included in Win2K Server anyway.

I would recommend doing some serious research into proxies and see if you find one that fits your needs.

Dave
0
 
LVL 8

Expert Comment

by:scraig84
Comment Utility
Dcgames - NOTHING is just a "bunch of packets" to a firewall.  The whole point of having a firewall is the inspection of packets and rules based on variables.  There are very few firewalls that won't provide the info he is looking for, as geoffryn said.  I agree that a proxy such as ISA is a possible solution, but like geoffryn said, there are other possibilities.  As to the "good or bad" nature of MS proxies, for this function they are actually quite good in my experience.
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 

Author Comment

by:cMan
Comment Utility
I am using a Zyxel Prestige 600 series, I believe its the
642 but im not sure. Its the one that has a router, hub
and an adsl connection to my isp. Maybe I can get some info from this??

thx fr all yur help!

Neil D
0
 

Author Comment

by:cMan
Comment Utility
It could be the 643 maybe, it doesnt say on it..

Neil D
0
 
LVL 5

Expert Comment

by:dcgames
Comment Utility
scraig84 - I agree I'm over simplifying, but unless you have a fancy firewall with stateful inspection, MOST firewalls deal only with packets, IP addresses and ports.

If you are using NAT, there is some degree of statefulness because "replies" can be tied to the original messages you sent, but NAT does not a firewall make.

cMan / Neil - MS Proxy 2.0 (if you have it) is reputed to be much better than 1.0. I believe it comes with the Backoffice suite.

There are proxies designed for internet connection sharing setups, such as WinGATE, which is loved by some, hated by others.

You'll just have to research a few and decide if any fit your needs.

If your users are pretty much tied to their PCs and the kind of information you need is mostly traffic statistics, you may be able to get something from your firewall, but in my experience that hasn't been the case.

Dave

0
 
LVL 79

Accepted Solution

by:
lrmoore earned 200 total points
Comment Utility
You can always run a sniffer application like tcpdump or ethereal. Both are free and will provide you most everything you're looking for. Set either to filter out everything except ftp/http/pop3/smtp and offload the results to a file and away you go...
0
 

Author Comment

by:cMan
Comment Utility
Thank you Irmoore!!

That was just what I needed, the tcpdump led me to windump
after doing a search..It said tcpdump was for unix based os
only, but provided a link to windump which works great!!

Neil D
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now