?
Solved

Network Activities Monitoring

Posted on 2008-10-07
9
Medium Priority
?
213 Views
Last Modified: 2014-06-20
Dear All,

     I have a network with 500 users and I want to be able to monitor their activities like ( what there are downloading, the bandwidth, activities) what network software I could use for that.

Thanks
0
Comment
Question by:ibmas4002
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 7

Expert Comment

by:willbaclimon
ID: 22662291
What vendor switches do you have? If its cisco you can use netflow collector software.
0
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 22662610
Hi,

You need to setup a proxy server between your network. The proxy server (Cache+firewall) will log all the ftp and http based downloads. You can even restrict sites, limit the bandwidth, and monitor the bandwidth. There are two industry standard software-based proxy servers;

1- MS ISA Server
www.microsoft.com/ISAserver/default.mspx

2- Squid Cache Server
www.squid-cache.org

I personally recommend squid because it has all the basic features built-in and is open-source (free).

You may also have a look at hardware proxy appliance like bluecoat;

www.bluecoat.com
0
 
LVL 25

Accepted Solution

by:
Cyclops3590 earned 336 total points
ID: 22665785
uetian1707's suggestion of Squid is great for detailed monitoring of several protocols but doesn't quite capture everything you may want.

so long as you have a managed switch capable of port mirroring, something like Ntop is a perfect tool to collect detailed network statistics so you know who is taking up your link, what resources their using, how long, etc.  While Ntop does do Netflow, from what I've heard mirroring traffic to the ntop server is more reliable than using netflow.
0
Get proactive database performance tuning online

At Percona’s web store you can order full Percona Database Performance Audit in minutes. Find out the health of your database, and how to improve it. Pay online with a credit card. Improve your database performance now!

 
LVL 7

Assisted Solution

by:willbaclimon
willbaclimon earned 332 total points
ID: 22681680
Port mirroring is good..I've never ran into a issue with netflow. The benefit of netflow is that you can run it on any device that supports it. No needs set up aggregation points.


0
 
LVL 7

Expert Comment

by:willbaclimon
ID: 22723700
If satisfied please close the question
0
 
LVL 20

Expert Comment

by:jimmymcp02
ID: 22780073
Hello ibmas4002,

http://www.wireshark.org/about.html

Regards,

jimmymcp02
0
 
LVL 3

Assisted Solution

by:pistanu
pistanu earned 332 total points
ID: 37729867
linux bridge and then or proxy server, or filtering with iptables and log the traffic that you're interest.

here is how you make the bridge:

http://www.usermadetutorials.com/2010/06/creating-a-linux-bridge-for-shaping-qos/

the user wont realize that they are under big brother eye.
0

Featured Post

Get proactive database performance tuning online

At Percona’s web store you can order full Percona Database Performance Audit in minutes. Find out the health of your database, and how to improve it. Pay online with a credit card. Improve your database performance now!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
In this article, we’ll look at how to deploy ProxySQL.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question