track down network traffic

Hi,
I have noticed as of late some pretty slow internet tmes. I set up netflow and i can see device pairs and bandwidth usage. So for example i am seeing a184-85-240-74.deploy.akamaitechnologies.com that is connecting with anywhere from 1 to 100 of my pc's at any given time. I know what akamaitechnologies.com is but dont know who or what is using it to connect to me.

I do know it is not windows updates because we use internal WSUS.
I do know it is not my A/V updateing because again we use internal Kaspersky server and i did call them and they said it is not them.
I do know it is using port 80 tcp

My first thought is to install wireshark and see if that helps. My problem is that i am not a wireshark person so not sure if it is right tool.

Any ideas? I can by all means block the XXX.deploy.akamaitechnologies.com but that is a bandaid, i want to know what is going on.

tkthelpdesk

Asked: 2011-03-07

Advertise Here

1 Solution

LVL 84

Dave BaldwinFixer of ProblemsCommented: 2011-03-07

According to this page http://en.wikipedia.org/wiki/Akamai_Technologies , customers include Apple, Facebook, AMD, Amazon.com, Adobe Systems, J. C. Penney, Yahoo! and Blizzard Entertainment. I would look at the major web sites and applications your people are using.

tkthelpdeskAuthor Commented: 2011-03-09

After further review it seems that there is alot of streeming video from these guys. Ratheer than block it at this point i have chosen to tighten up my internet access list and blocked people form Face book and shopping sites.

Thanks for the responce

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Expand your skills with this month's free Premium course.

track down network traffic

Join & Write a Comment Already a member? Login.

Featured Post