?
Solved

Active VPN connections

Posted on 2011-02-20
1
Medium Priority
?
470 Views
Last Modified: 2012-05-11
Cisco ASA 5505
Microsoft 2008 NPS

VPN users authenticate to Cisco using AD and NPS.

Is there a tool out there that I can use to monitor connections? I want to log the VPN connections and length of time, possibly even amount of data transferred/received.

0
Comment
Question by:shankshank
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 42

Accepted Solution

by:
kevinhsieh earned 2000 total points
ID: 34942124
The ASA can show you that information for active VPN sessions. Just login to the ASA using the GUI ASDM and go to monitoring VPN connections. For historical information you would need to have the ASA send syslog messages to a syslog server which can then store the raw log information and hopefully present it to you in a useful format. A basic syslog server is Kiwi <http://www.kiwisyslog.com> . You could have Kiwi email you every time a VPN connection closed, which would include session time, user, and bytes transferred, For something that shows you a useful report you would need a logging tool with a reporting feature such as LogLogin, LogRhythm, HP ArcSight, Dell SecureWorks, possibly Splunk, AlienVault, etc. Who knows, maybe someone has already written an open source tool to go through the syslog to pull out the information.
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
Suggested Courses

766 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question