[fw-wiz] Edge appliance (firewall) that filters/monitors/records instant messenger?

I am looking at different technologies to address the constant and ever-changing instant messenger issue. At this point, I'm looking at two options really...block everything at the firewall except incoming VPN connections, and use a proxy server for any required outgoing internet access, and use an internal IM/conferencing service like Office Communications Server 2007 that can hook to public IM networks if needed...

Or...

Something like the Fortinet firewalls that can allow/deny/control/monitor IM/URL/virus/spam/IDS/IPS/etc traffic at the perimeter. We have Secure Computing sidewinders and Cisco ASA's in-house already...they can handle everything except the IM traffic.

Management has stated that IM of some kind is required for certain employees who are separated by a continent to save on long-distance phone usage until VoIP can be fully realized/utilized.

Overall question, does anyone know of any other options that would allow me to manage this traffic and be able to provide to management transcripts of what is typed, and to whom?

Yeah, I know I could use Ethereal and some other freely available things. Issue is, I want fire and forget, with the ability to let the managers to receive/view the reports without my interaction. Likewise, I want someone else (a vendor) to manage the ever-changing issue of IM traffic signatures and whatnot, which I would still have to handle/decipher going the Ethereal route.

Thanks for your time.

_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Relevant Pages

  • RE: [fw-wiz] Vulnerability Response
    ... >> management effort scales with the number of hosts. ... It scales non-linearly if the problem area is well-defined. ... Now - if you're gonna make a firewall policy for 10,000 desktops ... When someone talks about doing mitigation at the host level, ...
    (Firewall-Wizards)
  • Re: Firewall Management
    ... there after or deciding on managing the firewall myself. ... have built this firewall management service into their proposal, ... and event log analysis -- not unless you are a very small organization ...
    (comp.security.firewalls)
  • Re: Firewall for laptops, corporation with 1,000 laptops
    ... Most laptops are WIn2000 Prof. ... >> Do you recommend any firewall that I can deploy on the network? ... Probably around $30 a seat. ... It too probably has a central management server. ...
    (microsoft.public.security)
  • Re: [fw-wiz] OT: vendors please respond
    ... 1> Exactly what is this firewall supposed to be protecting? ... A separate IDS? ... 10> Do you need centralized management? ... 1> Features you MUST have. ...
    (Firewall-Wizards)
  • Re: Checkpoint disaster Recovery
    ... Mike Vore wrote: ... : can backup onto. ... as working systems without the firewall. ... Store the platform configuration elements on the management console. ...
    (comp.security.firewalls)