Pfsense has squid and lots of other features for network monitoring and Traffic shaping and tons of other stuff. I highly recommend it.
Actually I think Compaq started the i thing.Originally Posted by Thorn
What? Someone using the "i" on a non-Apple product? How dare they! Jobs better alert his lawyers!
Of course, if you really wanted to have some fun, go to Wal-Mart late at night and ask the greeter if they could help you find trashbags, roll of carpet, rope, quicklime, clorox and a shovel. See if they give you any strange looks. --Streaker69
Pfsense has squid and lots of other features for network monitoring and Traffic shaping and tons of other stuff. I highly recommend it.
for a free solution i recommend untangle and for commercial pay usage i would recommend webwasher over websense anyday. well except maybe now that mcafee bought webwasherman they suck.
There's tonnes of commercial products out there for this sort of thing. As Thorn mentioned none can tell you how long a website was in focus on a screen. Some (such as the Astaro product) try and do some funky things with their reporting where they assume that each set of page requests from a site means a three (or maybe five) minute usage period for that site. Its not really accurate however, especially when you consider that some site auto refresh their content without user intervention. On a proxy this looks like multiple requests to the site. We have had had usage reports get wildly skewed when users leave their machine logged on overnight with a news page open in the browser.
The best choice depends on the features you are after, including stuff such as:
- Categorisation of sites
- Malware scanning
- Content type protection
- SSL inspection
- Phishing protection
- Blocking of compromised hosts
- Authentication of users
- etc
Personally I have been using the Clearswift MimeSweeper for Web software product for years and I really like it. It has its problems though, it has performance problems for large sites, SSL inspection is an addon and doesn't work very well, reporting is not terrific, and its well renowned for being extraordinarily difficult to configure, especially if you want high security. Its also gone end of life just recently.
It is however (in my humble opinion) one of the best products out there for filtering web traffic based on content, it actually analyses the contents of traffic and determines file type based on the contents of the file (rather than on MIME Type headers or file extensions as most other products do), it can look inside zip files, office documents etc for embedded files, etc. It can provide excellent security if you know how to configure it well - its saved us from many a web based malware infection.
We are about to replace it with the MimeSweeper for Web appliance, which apparently fixes many of the issues with performance, reporting, ease of use etc. I don't know yet whether the security will be of the same high level, but I'm hopeful.
Some other well regarded products in the space which I have looked into are:
- WebMarshall
- ContentKeeper
- The Sophos product (cant remember the name)
- BlueCoat
- Barracuda
Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".
The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.
These guys make awesome anti virus products.
Of course, if you really wanted to have some fun, go to Wal-Mart late at night and ask the greeter if they could help you find trashbags, roll of carpet, rope, quicklime, clorox and a shovel. See if they give you any strange looks. --Streaker69
Thanks all for your input.
I know the active windows monitoring in going to be an issue but that's the law in Irish.
I'll have to research all the suggestions this week.
Just out of curiosity (I want to kill a cat.), what exacly does the law say?
Thorn
Stop the TSA now! Boycott the airlines.
Sonicwalls do this well.
dd if=/dev/swc666 of=/dev/wyze
Yeah, they are pretty good. We have been using them on our mail gateway and web gateway at work for approx 7 years now. Successive Virustotal scans of some new virus samples we were receiving via email about 6 months ago always showed Sophos being amongst the first to offer detection.
We were having some issues a while back where Sophos were not detecting certain web based malware dropper programs that Symantec (running on our desktops) was detecting. Haven't had that happen for about a year now though, so either Sophos have gotten better or Symantec have gotten worse
Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".
The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.
2 words...Clark Connect. Just about every school in my state uses it. We have students trying to bypass our filtering 24/7. The only thing that I have seen get by it is Tor. However, with a quick Snort rule, you can easily detect it and deal with the user. BTW, we tried websense, but dropped it for CC.
"You can get more with a kind word and a gun than you can with a kind word alone."
- Al Capone
Posting Permissions