Link to home
Start Free TrialLog in
Avatar of msibley
msibleyFlag for United States of America

asked on

Log internet traffic in and out of network

In my business I have a windows network connected to the internet through a router.  Recently we had a virus on one of the PCs that sent spam.  Our ISP almost cancelled our account, but they were able to help us isolate the computer.  Now, I'd like to set up a computer (probably a linux box) to act as a go between the network and internet so that I could log all traffic going in and out.  Our router has a log function, but it seems to fill up to quickly.  How would I do this?

Mark
SOLUTION
Avatar of rsivanandan
rsivanandan
Flag of India image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of naveedb
naveedb
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of msibley
msibley
Flag of United States of America image

ASKER

How would I determine if the router supports syslog?  And, if so, how would I set it up?

Mark
Avatar of rsivanandan
rsivanandan
Flag of India image
>>Our router has a log function, but it seems to fill up to quickly.

That is syslog (SystemLog).

Cheers,
Rajesh
SOLUTION
Avatar of ashbury
ashbury
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of pseudocyber
pseudocyber
>> Now, I'd like to set up a computer (probably a linux box) to act as a go between the network and internet so that I could log all traffic going in and out.

This is called a Firewall.  Not only can it log, but it can also block traffic.  Best practice is to block everything you don't specifically allow.  Better firewalls log more and are easier to use.  I would recommend Checkpoint.  I've heard good things about Sonicwall - less expensive option.  Cisco Pix are excellent, but a little more difficult to use.

Hope this helps.
ASKER CERTIFIED SOLUTION
Avatar of nickhills
nickhills
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of pseudocyber
pseudocyber
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of msibley
msibley
Flag of United States of America image

ASKER

Thanks. I found all of your suggestions to be informative, so I split the points.

Mark