Questions
Hi, I have set up a demo of the Firewall Analyzer and am impressed with the interface, however I need help and suggestions to see if this product is right for me. Can you offer advice regarding these questions? My network consists of 2 subnets which share a 3xT1 broadband internet connection, using a Netscreen-25 firewall. We are having slow internet issues and...
1) I need to know if users are abusing bandwidth with Peer 2 Peer or File Sharing programs. I can see that there are Protocol categories but pretty much all traffic I see is categorized as Web traffic or Unknown. How well does FA identify P2P traffic? Any way that I could show who is using P2P and how much broadband it is taking up?
2) Are WebTrends log files better than Netscreen log files? My Netscreen-25 router can send either normal or WebTrends logs and I don't know which one would be better. Could I send out both, simulataneously but on different ports if I create another Syslog Server using the web console?
3) My URL reports are blank. DNS can resolve host names ok, but my reports on URLs are blank. Any way to fix this?
4) Do you offer products that can block and moderate bandwidth on a per machine or per protocol basis? Or, is this something I will have to manage on the firewall?
5) Are devices identified by MAC address as well as IP Address?
6) Thanks! I'm excited to learn more about this product; I really hope it works out to be our solution going forward.
Kamal Hood | IT Consultant
kennedytechnologygroup
1) I need to know if users are abusing bandwidth with Peer 2 Peer or File Sharing programs. I can see that there are Protocol categories but pretty much all traffic I see is categorized as Web traffic or Unknown. How well does FA identify P2P traffic? Any way that I could show who is using P2P and how much broadband it is taking up?
2) Are WebTrends log files better than Netscreen log files? My Netscreen-25 router can send either normal or WebTrends logs and I don't know which one would be better. Could I send out both, simulataneously but on different ports if I create another Syslog Server using the web console?
3) My URL reports are blank. DNS can resolve host names ok, but my reports on URLs are blank. Any way to fix this?
4) Do you offer products that can block and moderate bandwidth on a per machine or per protocol basis? Or, is this something I will have to manage on the firewall?
5) Are devices identified by MAC address as well as IP Address?
6) Thanks! I'm excited to learn more about this product; I really hope it works out to be our solution going forward.
Kamal Hood | IT Consultant
kennedytechnologygroup