Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Statistics for Firewalls

From: "Bill Royds" <broyds () rogers com>
Date: Tue, 10 Sep 2002 19:46:59 -0400
It is very nice until the traffic gets a bit to much and then it tends to fall over. It is best running on a dedicated 
machine with big memory and fast processor. It does not use much disk space though.
There have also been some security problems with it in the past but not lately.
I have used it to monitor traffic inside a DMZ to  help design upgrades.
The To/From/port matrix is very nice to show that we needed to set up a back network for NFS/SMB for instance.
Having simple 10mbit hub used for back channel traffic saved a network upgrade and it was more secure.

-----Original Message-----
From: firewall-wizards-admin () honor icsalabs com
[mailto:firewall-wizards-admin () honor icsalabs com]On Behalf Of
Christopher Hicks
Sent: Tue September 10 2002 16:02
To: firewall-wizards () honor icsalabs com
Subject: RE: [fw-wiz] Statistics for Firewalls


On Tue, 10 Sep 2002, Noonan, Wesley wrote:

Since MRTG got tossed out, I figured I would add that there are
numerous commercial ware products that can do this.


I've been looking at ntop ( http://www.ntop.org ) for protocol statistical
analysis.  It looks like it does everything I could ever imagine wanting
for that sort of thing.  Does anyone have any experience with it,
positive, negative or otherwise?

-- 
</chris>

Camels may be nasty beasts, but they're the only way to get through the
desert.

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: