Home > IT Answers > Security > system security
Supercosmic
5 pts.
0
Q:
system security
Intrusion management, Security, Security products, System Security
is there any solution to scan all the traffic through a specific port.
we deploy symantec antivirus corp 10.0 but still vulnerabilities creeping through the network nodes. and we are unable to prevent autorun scripts through flash disks
ASKED: Oct 18 2008  4:44 AM GMT
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
RELATED QUESTIONS
0
Labnuke99
26375 pts.
0
A:
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
  • AddThis Social Bookmark Button
Snort or some other network IPS would likely be the right answer. You can try this on the Network Security Toolkit v1.8.0. The manifest of programs available in this distro is quite impressive.
Last Answered: Oct 20 2008  2:38 PM GMT by Labnuke99   26375 pts.
  •   
0
0
RSS - Discussions Help
Discuss This Answer:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _



_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

KevinBeaver   7485 pts.  |   Oct 21 2008  6:47PM GMT

The easiest way to do this is to use a good (i.e. commercial) network analyzer like OmniPeek. You can run OmniPeek in what’s called monitor mode and it will show you graphically where traffic is originating, what it is, and so on. Then if you need to drill down you can capture packets on that specific port and see what’s what.

 
0