Prev: Cisco SOHO 97 router reset
Next: VPN Question Pix 501
From: bbaruah2003 on 10 Jan 2006 04:15
Hi,
Is there possible to log all traffic going out through a cisco
3600 ?

Scenerio is this : 192.168.1.1 is a Router and its a gateway of all
clients, starting with IP addresss 192.168.1.2 . Is there any way, to
log all the traffic passing through the ethernet card of the router ?

Please suggest.

Regards
baruah.

From: Merv on 10 Jan 2006 04:28
What do you mean by Logged ?

The entire packet ?

The source and destination Ip addresses and ports ?

If later then check out NETFLOW

From: Martin Bilgrav on 10 Jan 2006 08:55
what you can do is to have a ACL that just permit ip any any, and then have
the "log" statment in the end.
Then have these logs sent to a syslog server.
But please bear in mind the extra CPU load this can generate, depending upon
traffic rates, bandwidth etc.
Also this will generate extra load on your syslog server.

But it can be used.

Alternatively you can place a cisco switch in series with you C3600
ethernetinetface, ans configure a SPAN session of this port, and have that
collected by a Sniffer, like SnifferPro or etherreal etc.
Dedicated appliances that does the same (plus more) can also be considered,
fx Allot, or packetshaper/packeteer
Dedicated network-taps are also an option here, as an inline device.

Or you can put in a webcache proxy-only server, and have all clients use
this, and then deny everything else, but traffic from the proxy towards the
internet.
The you can detailed log of your internet usage. both Client IP's and
visited sites.

HTH
Martin Bilgrav

"PJ" <b_baruah(a)hotmail.com> wrote in message
news:1136830816.461551.268280(a)o13g2000cwo.googlegroups.com...
> Hi,
> Can anyone explain how I can use a Cisco 3600 series router for
> Traffic log ?
>
> Scenerio is this : 192.168.1.1 is the router and is the gateway
> of all clients starting
> 192.168.1.2 to 192.168.1.100.Now , I want to know who is doing what ?
>
> Is there any way , that whatever packets the router is forwarding can
> be logged ?
>
> Thanks and regards
> PJ
>


From: Andre Wisniewski on 10 Jan 2006 13:24
bbaruah2003(a)yahoo.com wrote:

> Hi,
> Is there possible to log all traffic going out through a cisco
> 3600 ?
>
> Scenerio is this : 192.168.1.1 is a Router and its a gateway of all
> clients, starting with IP addresss 192.168.1.2 . Is there any way, to
> log all the traffic passing through the ethernet card of the router ?
>
> Please suggest.
>
> Regards
> baruah.


Have a look at 1136830816.461551.268280(a)o13g2000cwo.googlegroups.com
and the answers.

Andre
--

From: bbaruah2003 on 19 Jan 2006 04:52
Thanks for the informations. The URL of cisco is not opening.

Can you tell me how do I enable NetFlow in my 3620 router with IOS
version

Version 12.2(12), RELEASE SOFTWARE (fc1)


regards
baruah

Andre Wisniewski wrote:
> PJ wrote:
>
> > Hi,
> > Can anyone explain how I can use a Cisco 3600 series router for
> > Traffic log ?
> >
> > Scenerio is this : 192.168.1.1 is the router and is the gateway
> > of all clients starting
> > 192.168.1.2 to 192.168.1.100.Now , I want to know who is doing what ?
> >
> > Is there any way , that whatever packets the router is forwarding can
> > be logged ?
> >
> > Thanks and regards
> > PJ
>
> Hi,
>
> to do this we use netflow analyzer.
> http://manageengine.adventnet.com/products/netflow/netflow-traffic-analy
> sis.html
>
> For more information have a look at
> http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_
> book09186a0080435cb6.html
>
> regards
>
> Andre
>
> --

 | 
Pages: 1
Prev: Cisco SOHO 97 router reset
Next: VPN Question Pix 501