D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: lingnau on August 31, 2011, 11:06:12 AM

Title: Setup logs for internet access
Post by: lingnau on August 31, 2011, 11:06:12 AM

Hello.
I've been using DFL hardware for a long time and need to ask you guys a question.

I need to setup a few computers to have internet access with full internet access log, in other words:

1. I need to authenticate the computer user every time someone tries to access something. (Thant should be easy, I'm planning to authenticate against Active Directory).
2. I need to log the URLs requested by each user.(Maybe using syslog or snmp, need help here)

Is there a way (Has someone acomplished this) using DFL series firewall, or isn't it possible?

I'm using a DFL-800. Can it be done, or should I be searching for another solution (SQUID?).

Title: Re: Setup logs for internet access
Post by: danilovav on September 01, 2011, 01:23:08 PM

1. Refer manual for example, it's not difficult. Last days this forum had a topic about it, try to find.

2. Some ways are possible
- by using HTTP ALG, DFL will send URLs requested (of cource, only thru HTTP - without encryption) via syslog. You can parse and store it. By this way i've made some traffic accounting tool
- you can make transparent proxy (ex, squid, ISA or KWF) and get statistics from it
- you can mirror LAN port between network and DFL and use some network analyzer
IMHO, 1st way is most simple to implement, expecially if you dont need traffic stats (URL is enouth)

Title: Re: Setup logs for internet access
Post by: lingnau on September 01, 2011, 01:45:07 PM

Quote from: danilovav on September 01, 2011, 01:23:08 PM

1. Refer manual for example, it's not difficult. Last days this forum had a topic about it, try to find.

2. Some ways are possible
- by using HTTP ALG, DFL will send URLs requested (of cource, only thru HTTP - without encryption) via syslog. You can parse and store it. By this way i've made some traffic accounting tool
- you can make transparent proxy (ex, squid, ISA or KWF) and get statistics from it
- you can mirror LAN port between network and DFL and use some network analyzer
IMHO, 1st way is most simple to implement, expecially if you dont need traffic stats (URL is enouth)

Any recommendation of syslog server software?

Title: Re: Setup logs for internet access
Post by: danilovav on September 02, 2011, 10:07:23 PM

Dont know, i've made it by myself :D
I know kiwi syslog, try to use it