Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

How to detect and kill unauthorized network activity

Posted on 2011-03-10
7
Medium Priority
?
971 Views
Last Modified: 2014-09-22
I am a school network admin.  How can I detect when my students are using tools like PUTTY and Ultrasurf to bypass webfiltering and how can I detect and track DOS attacks from the student workstations?  We do not allow non-distrooct devices to attach to the network.  M7y best solution would be to detect and identify the activity, e-mail me about it, and allow me to either control it, or track it to a port on a switch. Additionally, if I could shape my network traffic to limit certain content, that would be a bonus...

My network uses Brocade big iron switches.

Thank you for your help.
0
Comment
Question by:Stephen York
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 13

Expert Comment

by:kdearing
ID: 35095380
You're looking for a good network monitoring package.
The following link has many:
http://www.experts-exchange.com/Software/System_Utilities/Q_26748566.html?cid=748#a34841205
0
 
LVL 1

Author Comment

by:Stephen York
ID: 35097735
Do you have any preferences?  Have you used What's Up Gold?
0
 
LVL 13

Accepted Solution

by:
kdearing earned 2000 total points
ID: 35100247
I've used What's Up Gold, SpiceWorks, and Wireshark.
Alot of experts here love PRTG
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
LVL 1

Author Comment

by:Stephen York
ID: 35128299
We will look at WUG and PRTG.  Both have free trials and both can be cost effective for me.  Thank you for your suggestions and help!
0
 
LVL 1

Author Closing Comment

by:Stephen York
ID: 35128304
THANX!!!!!!!!!
0
 
LVL 1
ID: 40335605
I have a script I created that blocks write access to a certain part of the user registry. Ultrasurf needs to be able set it's own address as a proxy in windows. My blog explains it in more detail http://www.chrisleblanc.org/block-ultrasurf-workstation-level-windows/
0
 
LVL 1

Author Comment

by:Stephen York
ID: 40336432
Interesting - thanx.  My question was really beyond just Ultrasurf, but it was part of my problem...

For the major proxy avoidance tools, after a little observation of real traffic on our network and my firewall, and then running the many versions of Ultrasurf and some of its brothers, we found that Ultrasurf and kin tends to use netblocks from and Asian provider, Hurricane Electric, to stash their moving server IP targets...  nothing good seems to come from there so we simply black-list entire blocks of the netblocks from that vendor and Ultrasurf does not give the illusion of not working, it just doesn't work.  The only complaints that I have had since doing this is from some of my students... <<Insert evil giggle and/or smirk here ...>>  Way easier than playing with so many other things to stop the stupidity.  It is not foolproof, but I employ other means to help bolster my security and tighten the use of my network bandwidth to be more oriented towards education...  I really have so many other better things to do than play spy versus spy, but this is part of the job...
0

Featured Post

Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're a modern-day technology professional, you may be wondering if certifications are really necessary. They are. Here's why.
With the evolution of technology, we have finally reached a point where it is possible to have home automation features like having your thermostat turn up and door lock itself when you leave, as well as a complete home security system. This is a st…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question