troubleshooting Question

How to use tcp dum feature on SonicWall firewall to track/catch botnet

Avatar of bobox00
bobox00Flag for United States of America asked on
SecurityHardware FirewallsAnti-Spyware
6 Comments3 Solutions2101 ViewsLast Modified:
opendns.com says that there's a malware/botnet activity detected on my network. I understand that I can use the tcp dump feature on my firewall to find out which device is involved in this botnet activity. Please give me ideas on how to track down this device. I have an NSA 3500 firewall.
ASKER CERTIFIED SOLUTION
jacobstewart

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 3 Answers and 6 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 3 Answers and 6 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros