Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: desperate for help ...

desperate for help ... 12 years 7 hours ago #6214

Greetings everybody.....
let me get right to the point, my friend has asked me for a favor....he works in a small firm that has it's LAN connected to the net and they have been getting rather big bills from their ISP.As it seems his co-workers have been doing more that company related surfing and he has asked me to try to trace who is responsible for higher bandwidth consumption but I have a few restrictions:
1. No one will no I am doing it of course, besides my friend
2. It must be done from a new host imported to their LAN (a laptop), with some sort of network scanning method
3. The results must be logged somehow
4. If I have an option I would like to use windows based app (or apps) to handle this assignment

so...there you have it...any advice...please ?
The administrator has disabled public write access.

Re: desperate for help ... 11 years 11 months ago #6221

  • Chris
  • Chris's Avatar
  • Offline
  • Administrator
  • Posts: 1446
  • Thank you received: 13
  • Karma: 8
knjaz_milos,

If all you want is to log what's going in and out the network then I'd surely recommend you the IRIS packet sniffer. Simply grab a hub and connect the cable modem, your main lan connection and laptop with the IRIS software sniffing the data.

Iris has a neat function, allowing you to 'view' the captured data by host and protocol/service. This way you can see what each person has been doing throughout the day, without them knowing.

The program runs under windows and has a easy to navigate and friendly interface, so you'll get it up and running in no time.

We've got a shareware version available in our download section, give it a go and if you require any help with, post your question right here.

Hope that helps.

Cheers,
Chris Partsenidis.
Founder & Editor-in-Chief
www.Firewall.cx
The administrator has disabled public write access.

Re: desperate for help ... 11 years 11 months ago #6223

  • davidklose
  • davidklose's Avatar
  • Offline
  • Frequent Member
  • Posts: 45
  • Karma: 0
Well man, another good option is Ethereal. Its a freeware, it does a good work. Give it a try and see.
Good luck
DavidKlose
The administrator has disabled public write access.

Re: desperate for help ... 11 years 11 months ago #6224

  • Greenice
  • Greenice's Avatar
  • Offline
  • Frequent Member
  • Posts: 24
  • Karma: 0
Yep, I second Ethereal. Iris refuses to work on my pc for some reason. It always bombs out.

Another alternative to using a Hub would be to use port mirroring on the switch which services the LAN. Assuming that a switch is indeed used, and it supports this feature. Port mirroring enables a series of ports to have their traffic mirrored to a specific other port. By connecting your laptop to this other port and running your sniffer, you would see all the traffic on the ports being mirrored. Ofcourse, you would need to have management access to the switch in order to configure this. Best of luck.

Cheers.
The administrator has disabled public write access.

Re: desperate for help ... 11 years 11 months ago #6229

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
IPtraf sounds like what you're looking for.
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.

Re: desperate for help ... 11 years 11 months ago #6245

Basically ...I need an app that I can leave for couple of hours running and later to analyze the captured data.....with any ease if possible :)))...to determine what was happening .
The administrator has disabled public write access.
Time to create page: 0.088 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup