Monitoring network end user operation with a cisco router

45 pts.
Tags:
Cisco 1841
Cisco Routers
Cisco switches
Network monitoring
Hi    One of my client requires a solution for monitoring end users traffic  going through a cisco  router.There is a lot of problem with over utilisation of WAN link by end users. The company need a solution for monitoring operation of end users(who & where they are trying to communicate).   Please suggest an appropriate solution , also mention the software available and configuration needed in the cisco router  Is there any other method with cisco switches ? , i heard about span configuration but no idea .PLZ help me with a detailed solution.

Software/Hardware used:
cisco 1841

Answer Wiki

Thanks. We'll let you know when a new response is added.

<a href=”http://www.ntop.org/news.html”>ntop</a> is an excellent tool for this purpose. However, you will need to properly configure the network for ntop to capture traffic on a switched network. A network switch will only send broadcast traffic to all ports. To “hear” all traffic, a switch port has to be configured as a mirror, span or monitor port. You can then connect your network monitor to this port to listen to all traffic on the network. Another option would be to get a network tap and place it between the edge router & the LAN switch. This will permit you to see all traffic entering and exiting the local network. It would not show you host to host traffic on the local LAN though. Take a look at some of my blog postings on this topic. Start on this <a href=”http://itknowledgeexchange.techtarget.com/it-trenches/tag/monitoring/”>page</a> and the first part of the series starts <a href=”http://itknowledgeexchange.techtarget.com/it-trenches/tag/monitoring/page/5/”>here</a>. The ntop mailing list is a great place to get additional assistance on this excellent application. This <a href=”http://www.youtube.com/watch?v=vZFMpsFKg2A”>video</a> or this <a href=”http://www.youtube.com/watch?v=glNZA9vpy8Y&feature=related”>one</a> may also give you some education into using ntop. You can find some liveCD’s with ntop on it. Check out the <a href=”http://www.networksecuritytoolkit.org/nst/index.html”>Network Security Toolkit</a>.

See this <a href=”http://itknowledgeexchange.techtarget.com/itanswers/network-bottelknecking/”>similar question</a>.

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Kevin Beaver
    This is something that's easily monitored/solved with a network analyzer. I use OmniPeek given that it can monitor traffic sessions, protocols used, top talkers, etc. all without having to capture packets. CommView is another analyzer worth considering and it's priced very competitively as well.
    17,385 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following