Solved

track down network traffic

Posted on 2011-03-07
2
553 Views
Last Modified: 2012-05-11
Hi,
     I have noticed as of late some pretty slow internet tmes. I set up netflow and i can see device pairs and bandwidth usage. So for example i am seeing a184-85-240-74.deploy.akamaitechnologies.com that is connecting with anywhere from 1 to 100 of my pc's at any given time. I know what akamaitechnologies.com is but dont know who or what is using it to connect to me.

I do know it is not windows updates because we use internal WSUS.
I do know it is not my A/V updateing because again we use internal Kaspersky server and i did call them and they said it is not them.
I do know it is using port 80 tcp

My first thought is to install wireshark and see if that helps. My problem is that i am not a wireshark person so not sure if it is right tool.

Any ideas? I can by all means block the XXX.deploy.akamaitechnologies.com but that is a bandaid, i want to know what is going on.
0
Comment
Question by:tkthelpdesk
2 Comments
 
LVL 83

Accepted Solution

by:
Dave Baldwin earned 50 total points
ID: 35059673
According to this page http://en.wikipedia.org/wiki/Akamai_Technologies , customers include Apple, Facebook, AMD, Amazon.com, Adobe Systems, J. C. Penney, Yahoo! and Blizzard Entertainment.  I would look at the major web sites and applications your people are using.
0
 

Author Closing Comment

by:tkthelpdesk
ID: 35083193
After further review it seems that there is alot of streeming video from these guys. Ratheer than block it at this point i have chosen to tighten up my internet access list and blocked people form Face book and shopping sites.

Thanks for the responce
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brand new malware strain was recently discovered by security researchers at Palo Alto Networks dubbed “AceDeceiver.” This new strain of iOS malware can successfully infect non-jailbroken devices and jailbroken devices alike.
I've been an avid user and supporter of Malwarebytes Premium Version 2.x for years. It's an excellent product that runs alongside just about any Anti-Virus application without issues. It seems to have an uncanny ability to pick up many things that A…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now