Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

ISA2003-report for bandwith

Posted on 2007-04-05
6
Medium Priority
?
266 Views
Last Modified: 2013-12-04
hello all.
I'm using an ISA 2003 firewall between my LAN and internet. My LAN has around 400 clients. now I have problem: some of users is infected with spyware, and it sends many mails, and use most the bandwith.

Using ISA 2003, how can I detech who is infected with spyware? or saying in other way, who use most my bandwith?

regard
hva.
0
Comment
Question by:hva123456
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 2000 total points
ID: 18857051
No such thing as ISA 2003 - its isa2000, 2004 or 2006.
If its isa2000 then you can use the bandwidth options and the ISA log files.

If its ISA2004 or ISA2006, the bandwidth control was removed.
Instead, open the ISA gui,
select monitoring - reports
Create and run a report for the required period and this will produce a decent html report of all activity, to where and by whom and from where.
Also, in the gui, select monitoring - logging.
click start query - this starts the live logging (realtime) monitor.
0
 

Author Comment

by:hva123456
ID: 18862639
The problem is we cannot have a report on a specific port for each user
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 18862676
Again, what version of ISA are you actually running? Bandwidth reporting is not provided in isa2004/2006 so is not an isa fault; its a feature :)
There are add-ons/plug-ins that can be purchased to provide that functionality though.


0
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

 

Author Comment

by:hva123456
ID: 18879998
I use ISA 2004,. So we dont have the solution at the moment?
0
 
LVL 51

Assisted Solution

by:Keith Alabaster
Keith Alabaster earned 2000 total points
ID: 18880569
<<If its ISA2004 or ISA2006, the bandwidth control was removed.
Instead, open the ISA gui,
select monitoring - reports
Create and run a report for the required period and this will produce a decent html report of all activity, to where and by whom and from where.
Also, in the gui, select monitoring - logging.
click start query - this starts the live logging (realtime) monitor>>

If you want it more granular then goto the monitoring - logging section.
Edit the Query to use the criteria you want reported against and the time action to cover the period to report against. Select a single user if you wish
open the toolbox window on the right and select copy all to clipboard
Copy this into Excel and you can graph it to your hearts content.

Lastly, the data is all stored in an MSDE database. You can query this directly on the ISA box (ISA's security features will stop you querying the msde from another machine) to pull the info as you want.

As mentioned, ISA does not perform bandwidth loading so it is not a function of the product.


0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 19036619
Thanks :)
0

Featured Post

Tech or Treat! - Giveaway

Submit an article about your scariest tech experience—and the solution—and you’ll be automatically entered to win one of 4 fantastic tech gadgets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
Suggested Courses

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question