Educause Security Discussion mailing list archives
Re: classifying P2P traffic
From: "Harris, Michael C." <HarrisMC () HEALTH MISSOURI EDU>
Date: Tue, 29 Jan 2008 10:50:47 -0600
Any suggestions other than Snort or IPAudit for open source or freeware for monitoring and reporting (not in line blocking) of how bad the P2P problem is. Have any ideas on how best to collect the data to make the justification for purchasing Tipping point or Packeteer. Snort and IPAudit are fine for playing Wack-A-Mole with P2P by signature or by port, encryption forces this to a volumetric review but neither is any good for management reporting to quantify the severity of the problem. Mike ----Original Message----- From: Youngquist, Jason R. [mailto:jryoungquist () CCIS EDU] Sent: Tuesday, January 29, 2008 8:50 AM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: [SECURITY] classifying P2P traffic What devices are you using to monitor P2P traffic and how well are they working for you? Is there some P2P traffic that you believe your monitoring software isn't catching? Ie. encrypted traffic, outdated P2P definitions from the vendor, etc. Thanks. Jason Youngquist jryoungquist () ccis edu
Current thread:
- classifying P2P traffic Youngquist, Jason R. (Jan 29)
- <Possible follow-ups>
- Re: classifying P2P traffic David Boyer (Jan 29)
- Re: classifying P2P traffic Consolvo, Corbett D (Jan 29)
- Re: classifying P2P traffic Greene, Chip (Jan 29)
- Re: classifying P2P traffic Hughes, Scott (Jan 29)
- Re: classifying P2P traffic Justin Dover (Jan 29)
- Re: classifying P2P traffic Julian Y. Koh (Jan 29)
- Re: classifying P2P traffic Alex (Jan 29)
- Re: classifying P2P traffic Harris, Michael C. (Jan 29)
- Re: classifying P2P traffic Michael Hornung (Jan 29)
- Re: classifying P2P traffic Michael Hornung (Jan 29)
- Re: classifying P2P traffic Lutzen, Karl F. (Jan 29)
- Re: classifying P2P traffic jkaftan (Jan 29)
- Re: classifying P2P traffic Alex (Jan 29)
- Re: classifying P2P traffic Samuel Young (Jan 29)
- Re: classifying P2P traffic Cal Frye (Jan 29)
- Re: classifying P2P traffic John Kristoff (Jan 29)
- Re: classifying P2P traffic Dan Oachs (Jan 29)
- Re: classifying P2P traffic Cal Frye (Jan 29)
(Thread continues...)