From owner-freebsd-isp  Tue Oct 16  6:15:38 2001
Delivered-To: freebsd-isp@freebsd.org
Received: from mars.virtual-earth.de (mars.virtual-earth.de [212.89.109.104])
	by hub.freebsd.org (Postfix) with SMTP id 9578937B405
	for <freebsd-isp@freebsd.org>; Tue, 16 Oct 2001 06:15:34 -0700 (PDT)
Received: (qmail 95242 invoked from network); 16 Oct 2001 13:17:41 -0000
Received: from mp.virtual-earth.de (HELO virtual-earth.de) (212.89.109.98)
  by mars.virtual-earth.de with SMTP; 16 Oct 2001 13:17:41 -0000
Date: Tue, 16 Oct 2001 15:15:27 +0200 (CEST)
From: Mathias.Picker@virtual-earth.de
Subject: getting all connections between two sites
To: freebsd-isp@freebsd.org
MIME-Version: 1.0
Content-Type: TEXT/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8BIT
Message-Id: <20011016131534.9578937B405@hub.freebsd.org>
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-isp.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-isp>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-isp>
X-Loop: FreeBSD.org

I have a problem in an intranet and thought someone might have
encountered this allreads. I'm not too much a networks guy, so bear with
me if my description is missing precision:

two sites have to be isolated through a firewall, which are right now 
fully connected and have probably many cross connections, e.g. users at
siteA using servers at siteB and vice versa.

Since most of these connections are historically grown and both sites
are very big just trying to interview people which connections they use
is probably not enough.

So I thought, let's just connect the sites through one cable or install
the firewall but let it open, and log all connections and get records
like

	 IpAtSiteA, port, protocol, direction, IpAtSiteB 

Has anyone done this allready, or has anyone an idea how to do this
without logging all the connection data and post-process it? I need only
the fact that some connection has been up and which ip's, port and
protocol was involved, and only once per connection, e.g. if I found
some connection, I'm not interested in it anymore.



Thanks for any hints, Mathias




-- 
                            virtual earth
 Mathias Picker
 Geschäftsführer      Gesellschaft für Wissens re/prä sentation mbH

                            Mathias.Picker@virtual-earth.de 
			    Fon +49 89  / 540 7425-1
                            Fax +49 89  / 540 7425-9



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message