Firewall Wizards mailing list archives

RE: Statistics for Firewalls

From: Joe Matusiewicz <joem () nist gov>
Date: Wed, 11 Sep 2002 15:10:33 -0400

At 02:54 PM 9/11/02, John Adams wrote:

I had similiar problems with ntop. What I usually do is to filter out of
the traffic I deem useless with a tcpdump expression.

For example, do you really need to know every DNS connection? Hell no,
filter that. Filter NNTP. Filter all SMTP that isn't bound for your main
mail server. Filter out NetBIOS.

Actually, that wasn't an option. At the time I was most interested inbandwidth usage to decide on whether to get a bigger pipe. I needed to seethe whole picture.


-- Joe

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Statistics for Firewalls, (continued)
- Re: Statistics for Firewalls Dominik Miklaszewski (Sep 10)
- Re: Statistics for Firewalls Jos Andel (Sep 10)
- Re: Statistics for Firewalls Volker Tanger (Sep 10)
- Re: Statistics for Firewalls Joe Matusiewicz (Sep 10)
  - Re: Statistics for Firewalls S. Jonah Pressman (Sep 10)
- RE: Statistics for Firewalls Noonan, Wesley (Sep 10)
  - RE: Statistics for Firewalls Christopher Hicks (Sep 10)
    - RE: Statistics for Firewalls Bill Royds (Sep 10)
    - RE: Statistics for Firewalls Joe Matusiewicz (Sep 11)
    - RE: Statistics for Firewalls John Adams (Sep 11)
    - RE: Statistics for Firewalls Joe Matusiewicz (Sep 11)
    - RE: Statistics for Firewalls John Adams (Sep 11)
    - RE: Statistics for Firewalls Christopher Hicks (Sep 11)
    - Re: Statistics for Firewalls IT - Sven Mueller (Sep 12)
- RE: Statistics for Firewalls Sutantyo, Danny (Sep 10)
  - Re: Statistics for Firewalls Dominik Miklaszewski (Sep 10)
- RE: Statistics for Firewalls Roten, Charles (Sep 11)