Monitor traffic of users in a network

i want to monitor the egress interaface(tx) of the firewall and identify the users bandwidth, visited websites, who is having the most bandwidth for internet etc. i am planning to do this by port mirroring the port which is going to the firewall.

the mirrored port will be connected to the monitoring system, so that what ever tx traffic goes to the firewall goes to the monitored system.

Can anyone tell the best open source software that can do this. with graphs, user identification via IP address, the sites visted etc

4

Contributors

2

Replies

9 Hours

Discussion Span

4 Months Ago

Last Updated

3

Views

ITech

Light Poster

39 posts since Jun 2007

Reputation Points: 11

Solved Threads: 0

Skill Endorsements: 0

4 Months Ago

0

If you have any cisco devices that support it, the devices can export NetFLow Data to a host PC. Very similiar to how it can send logging data to a syslog host. In this case, the netflow data can be analyzed in the fly by certain software to report on the data you want ( i.e. who is using the most traffic to visit a dancing cat video...).

There are some opensource network monitors out there.... look at http://www.ghacks.net/2011/09/08/networktrafficview-network-monitoring-statistics-tool/ this one is fairly decent.

CimmerianX

Posting Pro in Training

499 posts since Jul 2010

Reputation Points: 49

Solved Threads: 59

Skill Endorsements: 10

4 Months Ago

0

Not knowing anything about the platforms involved, or the environment.

Cacti may do what you need.

DutyWatch Remote isn't too expensive, in fact considering it's for a Mac it's practically a freebie. :-)

There is also some very good advice here regarding the matter of monitoring the use of the Internet by employees.

BigPaw

Posting Pro

569 posts since Oct 2012

Reputation Points: 17

Solved Threads: 25

Skill Endorsements: 2

Monitor traffic of users in a network

This article has been dead for over three months: Start a new discussion instead