0

Hi
I have setup the following for a client:
AXIS 240Q IP Video Server with security enabled (requires username and password to view)
It is accessed from the outside world via a Netgear DG834 ADSL Modem Router with built in firewall and I've allowed traffic into the Video Server by opening up Port 80 and directing traffic only to the Video Server
The client has decided that she needs to know who is logging in and out so can anybody suggest any easy to use software that can do this?
The network doesn't have a server, it's just Microsoft standard TCP/IP network
Thanks folks!

2
Contributors
10
Replies
11
Views
8 Years
Discussion Span
Last Post by sknake
Featured Replies
  • 1
    sknake 1,622   8 Years Ago

    No, it works either way :) . You can plug a hub in before your ISP's router or after it and log the data. If it NAT's the IPs to the external IP then OK, plug it outside of the router. Unless you're talking about a T1 line or something … Read More

0

The login success/failure is determined by the Video Server so if you want to record successful logins then the video server would need to have a logging mechanism.

You could log all connections to the video camera by enabling "Log TCP SYN Packets" on the router, if that option is available in the firmware. Since the answer to this question is entirely dependant on the firmware its hard to give you an answer.

0

thank you for your reply
to be honest the router is very basic and doesn't have those features
there's another we could use, the DGF338, and we can enable the WAN to LAN logs (*) but they are still a bit unwieldy
If anyone comes up with a software solution it would be great
Thanks

(*) example

2009 Aug 4 13:53:43 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35774 DPT=80
2009 Aug 4 13:53:44 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35779 DPT=80
2009 Aug 4 13:53:44 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35780 DPT=80
2009 Aug 4 13:53:45 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35782 DPT=80
2009 Aug 4 13:53:46 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35784 DPT=80
2009 Aug 4 13:53:47 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35786 DPT=80
2009 Aug 4 13:53:47 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35787 DPT=80
2009 Aug 4 13:53:48 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35789 DPT=80
2009 Aug 4 13:53:48 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35790 DPT=80
2009 Aug 4 13:53:49 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35792 DPT=80
2009 Aug 4 13:53:51 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35795 DPT=80
2009 Aug 4 13:53:51 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35796 DPT=80
2009 Aug 4 13:53:55 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35802 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35804 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35805 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35806 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35807 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35808 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35809 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35810 DPT=80
2009 Aug 4 13:53:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35811 DPT=80
2009 Aug 4 13:53:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35812 DPT=80
2009 Aug 4 13:53:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35813 DPT=80
2009 Aug 4 13:53:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35814 DPT=80
2009 Aug 4 13:53:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35815 DPT=80
2009 Aug 4 13:53:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35816 DPT=80
2009 Aug 4 13:53:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35817 DPT=80
2009 Aug 4 13:53:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35818 DPT=80
2009 Aug 4 13:54:56 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35896 DPT=80
2009 Aug 4 13:54:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35897 DPT=80
2009 Aug 4 13:54:57 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35898 DPT=80
2009 Aug 4 13:54:58 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35902 DPT=80
2009 Aug 4 13:54:59 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35905 DPT=80
2009 Aug 4 13:55:00 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35907 DPT=80
2009 Aug 4 13:55:00 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35908 DPT=80
2009 Aug 4 13:55:01 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35909 DPT=80
2009 Aug 4 13:55:01 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35910 DPT=80
2009 Aug 4 13:55:02 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35912 DPT=80
2009 Aug 4 13:55:05 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35926 DPT=80
2009 Aug 4 13:55:05 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35928 DPT=80
2009 Aug 4 13:55:08 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35949 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35951 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35952 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35953 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35954 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35955 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35956 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35957 DPT=80
2009 Aug 4 13:55:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35958 DPT=80
2009 Aug 4 13:55:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35960 DPT=80
2009 Aug 4 13:55:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35961 DPT=80
2009 Aug 4 13:55:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35962 DPT=80
2009 Aug 4 13:55:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35963 DPT=80
2009 Aug 4 13:55:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35964 DPT=80
2009 Aug 4 13:55:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35965 DPT=80
2009 Aug 4 13:55:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=74.201.87.2 DST=192.168.1.32 PROTO=TCP SPT=35966 DPT=80
2009 Aug 4 13:56:02 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40952 DPT=80
2009 Aug 4 13:56:04 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40953 DPT=80
2009 Aug 4 13:56:04 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40954 DPT=80
2009 Aug 4 13:56:06 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40955 DPT=80
2009 Aug 4 13:56:07 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40956 DPT=80
2009 Aug 4 13:56:09 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40957 DPT=80
2009 Aug 4 13:56:09 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40958 DPT=80
2009 Aug 4 13:56:10 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40959 DPT=80
2009 Aug 4 13:56:11 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40960 DPT=80
2009 Aug 4 13:56:12 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40961 DPT=80
2009 Aug 4 13:56:15 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40962 DPT=80
2009 Aug 4 13:56:15 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40963 DPT=80
2009 Aug 4 13:56:20 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40964 DPT=80
2009 Aug 4 13:56:21 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40966 DPT=80
2009 Aug 4 13:56:21 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40967 DPT=80
2009 Aug 4 13:56:21 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40968 DPT=80
2009 Aug 4 13:56:21 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40969 DPT=80
2009 Aug 4 13:56:21 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40970 DPT=80
2009 Aug 4 13:56:22 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40971 DPT=80
2009 Aug 4 13:56:22 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40972 DPT=80
2009 Aug 4 13:56:22 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40973 DPT=80
2009 Aug 4 13:56:23 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40974 DPT=80
2009 Aug 4 13:56:23 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40975 DPT=80
2009 Aug 4 13:56:23 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40976 DPT=80
2009 Aug 4 13:56:23 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40977 DPT=80
2009 Aug 4 13:56:24 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40978 DPT=80
2009 Aug 4 13:56:24 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40979 DPT=80
2009 Aug 4 13:56:24 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=207.218.211.189 DST=192.168.1.32 PROTO=TCP SPT=40980 DPT=80
2009 Aug 4 13:57:21 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=188.192.56.18 DST=192.168.1.32 PROTO=UDP SPT=1160 DPT=38076
2009 Aug 4 13:57:25 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39419 DPT=80
2009 Aug 4 13:57:27 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39421 DPT=80
2009 Aug 4 13:57:27 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39422 DPT=80
2009 Aug 4 13:57:28 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39423 DPT=80
2009 Aug 4 13:57:29 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39424 DPT=80
2009 Aug 4 13:57:30 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39425 DPT=80
2009 Aug 4 13:57:31 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39426 DPT=80
2009 Aug 4 13:57:32 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39427 DPT=80
2009 Aug 4 13:57:32 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39428 DPT=80
2009 Aug 4 13:57:33 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39430 DPT=80
2009 Aug 4 13:57:36 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39434 DPT=80
2009 Aug 4 13:57:36 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39435 DPT=80
2009 Aug 4 13:57:39 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39438 DPT=80
2009 Aug 4 13:57:40 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39440 DPT=80
2009 Aug 4 13:57:40 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39441 DPT=80
2009 Aug 4 13:57:41 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39442 DPT=80
2009 Aug 4 13:57:41 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39444 DPT=80
2009 Aug 4 13:57:41 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39443 DPT=80
2009 Aug 4 13:57:41 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39445 DPT=80
2009 Aug 4 13:57:41 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39446 DPT=80
2009 Aug 4 13:57:41 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39447 DPT=80
2009 Aug 4 13:57:42 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39448 DPT=80
2009 Aug 4 13:57:42 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39449 DPT=80
2009 Aug 4 13:57:42 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39450 DPT=80
2009 Aug 4 13:57:42 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39451 DPT=80
2009 Aug 4 13:57:42 [DGFV338] [kernel] WAN2LAN[ACCEPT] IN=WAN OUT=LAN SRC=82.103.128.96 DST=192.168.1.32 PROTO=TCP SPT=39452 DPT=80

0

Please use code tags when posting text like that. It makes it far easier to read:

[code]

...paste here...

[/code]

Actually I just explained to someone how to monitor websites .. and this is exactly what you want. Say you connect to the camera with
http://www.camera.com/
it will then ask you for a username and password and likely redirect you to another page, ie:
http://www.camera.com/view.html

You can monitor the network for people who hit view.html and you will know they logged in OK. This will help filter out a lot of the garbage traffic you will receive. Take a look at this thread:
http://www.daniweb.com/forums/thread206078.html
* daniweb is a little slow right now so be patient

0

Thanks very much for taking the time to reply
Sadly this may be sound a bit negative but I already tried this approach and there is a problem in that the page it would rediect to is the external IP of the router (which then sends traffic through port 80 of the router into the Video Server)
The Video Server then needs another username and password so the user would have to authenticate twice
Also due to a previous setup the external IP is in the public domain so people may go straight to it, no great problem except that they would bypass the logging
If I told you the Video Camera broadcasts videos of a nursery school it's intended to be for parents only but the client quite rightly wants to be ultra careful
But thanks, your solution would work normally!

1

No, it works either way :) . You can plug a hub in before your ISP's router or after it and log the data. If it NAT's the IPs to the external IP then OK, plug it outside of the router. Unless you're talking about a T1 line or something special then it will work. Those off-the-shelf routers have standard ethernet ports so it will work.

Your setup would be:
Cable out of the wall in to the hub
PC & Camera plug in to the hub (pc port #1, listening port)
PC plugged in behind the router (pc port #2, usable port)

You will configure DHCP on the port #2 and use that to browse the internet.

Run the PC with two network cards. One plugged in behind the router so it can use the internet, the other plugged will be plugged in front of the router. The ethernet card plugged in front of the router should have no IP settings so it doesn't try to bind to your ISP. The card will be dropped in to promiscuous mode and sniff the traffic.

Votes + Comments
Is there something you don't know?
0

Now that's smart, thanks

Scott, it will take me a while to test this so I can't answer for a while but thanks again

Cheers

Nick A

No, it works either way :) . You can plug a hub in before your ISP's router or after it and log the data. If it NAT's the IPs to the external IP then OK, plug it outside of the router. Unless you're talking about a T1 line or something special then it will work. Those off-the-shelf routers have standard ethernet ports so it will work.

Your setup would be:
Cable out of the wall in to the hub
PC & Camera plug in to the hub (pc port #1, listening port)
PC plugged in behind the router (pc port #2, usable port)

You will configure DHCP on the port #2 and use that to browse the internet.

Run the PC with two network cards. One plugged in behind the router so it can use the internet, the other plugged will be plugged in front of the router. The ethernet card plugged in front of the router should have no IP settings so it doesn't try to bind to your ISP. The card will be dropped in to promiscuous mode and sniff the traffic.

0

You're welcome and good luck

Please don't forget to mark this thread as solved if that setup works for you!

0

Actually now that I think of it Windows will try DHCP unless you specify an IP so specify a junk IP range (NOTE: this range will be unaccessible on the internet) like 1.0.0.0/255.255.255.248 on the interface.

Some smaller ISPS use the equivelant of switches in their smartjacks on the street. You can actually ARP HIJACK all of your physical neighbors connections. Instead of being proactive and setting up 802.1Q VLANs the providers can reactive instead -- just watching for ARP hijacks. You don't want to get a call from them about something funny coming from your facility.

Don't worry though, its not against their TOS and you don't get in any trouble. They think along the lines of "what is this traffic... his internet can't be working, lets call him"

0

Dear Scott
Thanks for all your help
Just to update you we have decided that the firewall logs will be sufficient so I won't be trying your solution but thanks, it certainly helped to clarify our thoughts
Rgds
Nick A

0

Sounds good

Please mark this thread as solved as it seems you have found an answer to your original question and good luck!

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.