[Full-disclosure] Full packet inspection
- From: Michael Gale <michael.gale@xxxxxxxxx>
- Date: Wed, 09 Aug 2006 23:31:39 -0600
Hello,
I am wondering if someone can point me in the right direction. We are currently evaluating our bandwidth policy and are finding the need to dig deeper in our network traffic to find out what the current bandwidth is being used for.
We have used different tools in the past, NTOP for example to find out this information but it seems that this tool may no longer be a good way to go about it.
We are finding the need to look inside socks connections and classify traffic that is encrypted on it's own amount other things.
I was hoping some people could provide a list of tools they are using or have used to help in classifying or inspecting network traffic on a ongoing bases.
Thanks
Michael Gale
RHCE
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Prev by Date: Re: [Full-disclosure] Exploit for MS06-040 Out?
- Next by Date: [Full-disclosure] [SECURITY] [DSA 1149-1] New ncompress packages fix potential code execution
- Previous by thread: [Full-disclosure] If we can read 19, 832 n3td3v posts, we can do 1 open hate mail to Lieberman!
- Next by thread: [Full-disclosure] [SECURITY] [DSA 1149-1] New ncompress packages fix potential code execution
- Index(es):
