Monthly Statistics

[Guest]

[Matthysdt]

Hi

I'm trying out Endian Firewall as a possible solution to our enterprise, in conjunction with MikroTik routers.

I was told that Endian can provide extensive statistics, but I'm unable to find it on the system, here's what I'm looking for:

For the Proxy, I would like to be able to view a list of URL's and the total amount of bandwidth passed to/from them.
A great PLUS would be if this list could be sorted by bandwidth total (say MB, desc) and filtered by timeframe (e.g, last 30 days).

Is this at all possible?

I have further questions, but this is a good start!

Greatly appreciate any assistance!

[mrkroket]

I use an external tool to achieve this.

Endian produces squid log proxies, but with some slight changes.
Then those files can be imported on a 3rd party program to analyze traffic.

This is a good one for Windows, but $$$:
http://www.redline-software.com/eng/products/iam/
It lets you filter by IP, date, URL, etc etc etc.

In order to get the EFW http proxy log files working (in directory /var/log/squid ), you must remove the first columns of each log file:
Aug 27 10:26:53 EFW squid[4560]: 1282922813.017    645 192.168.0.10 TCP_MISS/404 1608 GET http://www.efwsupport.com/favicon.ico - DIRECT/X.X.X.X text/html
Must be converted to:
1282922813.017    645 192.168.0.10 TCP_MISS/404 1608 GET http://www.efwsupport.com/favicon.ico - DIRECT/X.X.X.X text/html

I used notepad++ and a simple regex to change all the files in a  of minutes.

There should be some free alternative, although I didn't find a good one yet. If you find one useful, let me know.