Firewall to monitor visited sites by user's
Hi,
I am working as system administrator, In office, there is workstation using Windows NT and one Linux server which connects all workstations to Internet. ex : Workstation W1, W2 , W3 .... Wn connected to Linux server L1 (Using LAN) which is connected to Internet. So all traffics on Linux server comes from LAN on eth1 forwarded to eth0 which is connected to internet. Now problem, I want to monitor from which workstation accessed which website , since all traffic passes through Linux server so I think its possible to do. I am looking for some software or others using which I can do. Thanks |
Monitor, as in maintain logs? Or block?
Consider DansGuardian, Squid, Snort |
Quote:
Currently I am looking for monitor, but If its create log and using this I can block the sites that will very excellent. Thanks |
This can be solved at so many levels. Many firewalls come with URL filtering/logging, or you can add/install something like snort in log-only configuration.
Or, if you control a gateway machine, you install tcpdump, and use wireshark to periodically check http traffic sites. Lots of options... |
Some one suggested me smoothwall Any idea how is it?
|
That might have been me. I've been using one for over 5 years.
|
Wow! Great,
Quote:
|
Yes, it will work fine.
I would recommend a modification (assuming you use the Linux server for other duties). Get another PC in which to install smoothwall 3 express. You will use *that* as your router, and leave your other Linux station to do whatever you want. Your config is straightforward. It will look like this: Code:
+--- PC1 I placed your Linux machine as a server on the DMZ, but it can go on the LAN if you'd like. |
All times are GMT -5. The time now is 11:49 PM. |