|
Title: Monthly Statistics Post by: Matthysdt on Saturday 28 August 2010, 12:29:38 am Hi
I'm trying out Endian Firewall as a possible solution to our enterprise, in conjunction with MikroTik routers. I was told that Endian can provide extensive statistics, but I'm unable to find it on the system, here's what I'm looking for: For the Proxy, I would like to be able to view a list of URL's and the total amount of bandwidth passed to/from them. A great PLUS would be if this list could be sorted by bandwidth total (say MB, desc) and filtered by timeframe (e.g, last 30 days). Is this at all possible? I have further questions, but this is a good start! Greatly appreciate any assistance! Title: Re: Monthly Statistics Post by: mrkroket on Saturday 28 August 2010, 04:19:44 am I use an external tool to achieve this.
Endian produces squid log proxies, but with some slight changes. Then those files can be imported on a 3rd party program to analyze traffic. This is a good one for Windows, but $$$: http://www.redline-software.com/eng/products/iam/ (http://www.redline-software.com/eng/products/iam/) It lets you filter by IP, date, URL, etc etc etc. In order to get the EFW http proxy log files working (in directory /var/log/squid ), you must remove the first columns of each log file: Aug 27 10:26:53 EFW squid[4560]: 1282922813.017 645 192.168.0.10 TCP_MISS/404 1608 GET http://www.efwsupport.com/favicon.ico - DIRECT/X.X.X.X text/html Must be converted to: 1282922813.017 645 192.168.0.10 TCP_MISS/404 1608 GET http://www.efwsupport.com/favicon.ico - DIRECT/X.X.X.X text/html I used notepad++ and a simple regex to change all the files in a of minutes. There should be some free alternative, although I didn't find a good one yet. If you find one useful, let me know. |