From owner-freebsd-questions@FreeBSD.ORG Thu Jan 11 03:54:09 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 3C53016A403 for ; Thu, 11 Jan 2007 03:54:09 +0000 (UTC) (envelope-from bocha@academ.org) Received: from mail.academ.org (mail.academ.org [81.1.226.250]) by mx1.freebsd.org (Postfix) with ESMTP id DE0CB13C448 for ; Thu, 11 Jan 2007 03:54:08 +0000 (UTC) (envelope-from bocha@academ.org) Received: from bocha.solink.office (solink.academ.org [85.118.228.14]) (Authenticated sender: solink@academ.org) by mail.academ.org (Postfix) with ESMTP id C0B7FEBE89 for ; Thu, 11 Jan 2007 09:54:04 +0600 (NOVT) From: Bachilo Dmitry To: freebsd-questions@freebsd.org Date: Thu, 11 Jan 2007 09:54:10 +0600 User-Agent: KMail/1.9.1 References: <45A50DA7.7060908@voidmain.net> In-Reply-To: <45A50DA7.7060908@voidmain.net> MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200701110954.11311.bocha@academ.org> X-Virus-Scanned: ClamAV version 0.88.7, clamav-milter version 0.88.7 on mail.academ.org X-Virus-Status: Clean X-Spam-Flag: SKIP X-Spam-Yversion: academ.org X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by milter-greylist-3.0 (mail.academ.org [0.0.0.0]); Thu, 11 Jan 2007 09:54:04 +0600 (NOVT) Subject: Re: WWW Proxy/Traffic Analyzer X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Jan 2007 03:54:09 -0000 =F7 =D3=CF=CF=C2=DD=C5=CE=C9=C9 =CF=D4 =F3=D2=C5=C4=C1 10 =D1=CE=D7=C1=D2= =D1 2007 22:00 Tom Grove =CE=C1=D0=C9=D3=C1=CC(a): > We have an employee who spends quite a bit of time on the net and > currently have no way of analyzing where they go. Are there any decent > proxy servers that I can put them on to see where they are going? > > -Tom > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" Nothing can be easier. You will have to recompile your kernel to be able to forward all traffic of= =20 your employees to squid, even if they don't use proxy in their browser.=20 Compile it with Options IPFIREWALL_FORWARD Then install squid and add a rule to a firewall like this:=20 fwd 192.168.1.1,3128 tcp from any to any dst-port 80 via xl0 Where 192.168.1.1 is a router, 3128 - squid port and xl0 is an outer=20 interface. This will make all your network users go through squid and all their moves= =20 will be recorded. You will just need to install SARG, which will draw nice= =20 HTML tables with IPs and sites visited by them. I use it myself and it works just fine. I also use squid to deny downloadin= g=20 of avi and mpeg files, and also to deny some sites that are not work-relate= d=20 and should not be visited from office. Also Squid and SARG can count traffic, so you can see who spends how much, = if=20 you don' have an unlimited internet. =2D-=20 =2D----------------------- =F3 =D5=D7=C1=D6=C5=CE=C9=C5=CD, =E2=C1=DE=C9=CC=CF =E4=CD=C9=D4=D2=C9=CA =F2=D5=CB=CF=D7=CF=C4=C9=D4=C5=CC=D8 =CF=D4=C4=C5=CC=C1 =D3=C9=D3=D4=C5=CD= =CE=CF=CA =C9=CE=D4=C1=C7=D2=C1=C3=C9=C9 =EF=EF=EF "=EB=CF=CD=D0=C1=CE=C9=D1 =F3=CF=CC=C9=CE=CB" =2D- With Best Regards, Bachilo Dmitry Head of systems integration dept Solink Company Ltd.