From owner-freebsd-questions Fri Sep 17 14: 3:11 1999 Delivered-To: freebsd-questions@freebsd.org Received: from agora.neteze.com (agora.neteze.com [208.201.249.4]) by hub.freebsd.org (Postfix) with ESMTP id 30CA31542E for ; Fri, 17 Sep 1999 14:03:02 -0700 (PDT) (envelope-from kc@neteze.com) Received: from admin1 ([208.201.249.51]) by agora.neteze.com (Post.Office MTA v3.5.3 release 223 ID# 0-60395U6000L600S0V35) with SMTP id com; Fri, 17 Sep 1999 14:06:57 -0700 Message-ID: <145401bf0150$70fc0800$33f9c9d0@neteze.com> From: "Kelsey Cummings" To: "Marty Poulin" , References: Subject: Re: Using tcpdump to report on web-surfing habits Date: Fri, 17 Sep 1999 14:05:59 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2314.1300 X-Mimeole: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Wouldn't the better way to do this be with a proxy like squid? Not only would you be able to limit access to certain sites, you'd have a much easier time logging all you user's web access. ----------------------------------------------------------------- Kelsey Cummings System Administrator NetEase, Inc. kc@neteze.com ----------------------------------------------------------------- ----- Original Message ----- From: Marty Poulin To: Sent: Friday, September 17, 1999 1:45 PM Subject: Using tcpdump to report on web-surfing habits > > Hi, > > I work for a mid-sized company (about 300 people in my building) and I > would like to set up a BSD box to listen to network traffic and email me > whenever someone accesses a prohibited site. (eg Porn, Warez, > gambling...) > > tcpdump seems like a good place to start, but has anyone had any > experience using it for something like this? If so how did you get it to > work? > > Part of the reason I want this information (aside from being the network > snitch) is because I want to eventually justify purchasing a fairly large > server that I can run Squid on with content filters. I've already set up > a small test box that works quite well, but it slows down when too much of > a load is placed on it (it's a P-100 with 24MB ram). > > Any help would be appreciated. > > Thanks, > > M. > ----- > This is the way the world ends. Not with a bang but a whimper. > - T. S. Eliot, "The Hollow Men" > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message