What's new
Carbonite

Welcome to Carbonite! Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

Monitoring Network usage

CHase

Cannon Fodder
Rating - 100%
3   0   0
Joined
Nov 30, 2011
Messages
66
Reaction score
1
Points
1,085
Location
Durban
Hi guys need some help please.

I have a small to medium size company which is becoming a nightmare to handle ( 100 devices )

My staff are torrenting and messing around on the web and I have zero control at the moment.

What is the best way to monitor this ?

I don't want to spend a fortune to get this thing up and running, is there a piece of software reasonably priced that can handle this for me ? Or do i need to get hardware that comes with software?

Your help would be much appreciated.
 

aiccc

Senior Member
Rating - 100%
31   0   0
Joined
Apr 19, 2011
Messages
489
Reaction score
488
Points
1,765
Location
NeverNever lan
This all depends on your network and networking ability


Free but requires skills to use properly

Paid options
I would recommend PRTG (paessler.)

You need to provide more info on
the network and (firewall, switches etc)
networking devices in use.
The client devices
their OS


Their is alot you can accomplish with free tools. But you need time to setup and manage them.
 

DannyBoyOPC

Senior Member
Rating - 100%
61   0   0
Joined
Nov 9, 2015
Messages
854
Reaction score
364
Points
1,515
Age
39
PRTG can be used free also... give you upto 100 sensors free if i am not mistaken
 

aiccc

Senior Member
Rating - 100%
31   0   0
Joined
Apr 19, 2011
Messages
489
Reaction score
488
Points
1,765
Location
NeverNever lan
30 days free unlimited free then reverts to free version with

Yes 100 sensors not devices. (y)
 

CHase

Cannon Fodder
Rating - 100%
3   0   0
Joined
Nov 30, 2011
Messages
66
Reaction score
1
Points
1,085
Location
Durban
This all depends on your network and networking ability


Free but requires skills to use properly

Paid options
I would recommend PRTG (paessler.)

You need to provide more info on
the network and (firewall, switches etc)
networking devices in use.
The client devices
their OS


Their is alot you can accomplish with free tools. But you need time to setup and manage them.

Thanks very much for the info, the PRTG looks amazing but is obliviously very expensive as is a premium product.

Basically i want to be able to check my users browser History and if they are torrenting, thats it in a nutshell.

I have a standard TP link router with 2 managed Cisco switches.
 

ovisser1

VIP
VIP Supporter
Rating - 100%
71   0   0
Joined
Jun 13, 2016
Messages
1,164
Reaction score
594
Points
3,045
Location
Roodepoort, JHB
I would invest in a router/firewall to be able to set up proper rules.
You can pick up Microtik routers for "relatively" cheap, and they will fair quite well.
I would also pair it with a proper AV that also does endpoint protection so you can have two things blocking those kinds of activities.
 

Qui_Illustrati

VIP
VIP Supporter
Rating - 100%
198   0   0
Joined
Sep 2, 2013
Messages
2,607
Reaction score
1,832
Points
4,115
Location
Cape Town
Have a look at Sophos UTM.
Does wonders.

Or if you just want a bit more visibility, perhaps drop a Pi in with PiHole.

Some cool capabilities
 

Phence

Well-Known member
VIP Supporter
Rating - 100%
58   0   1
Joined
Mar 22, 2015
Messages
2,280
Reaction score
595
Points
3,185
I'd say the best is a Fortigate firewall or some firewall which has policies. Not sure if an application is the proper solution, if you do I'd stay away from SolarWinds as I wasn't impressed with their offering and they got hacked big time.
 

dalion619

Lurker
Rating - 100%
45   0   0
Joined
Oct 7, 2013
Messages
684
Reaction score
361
Points
1,885
Location
Villieria, Pretoria
I'd stay away from SolarWinds as I wasn't impressed with their offering and they got hacked big time.
A supply chain attack on a single platform excluding all their other offerings is less 'big time' more covert, especially when you look at those using Orion.

Thanks very much for the info, the PRTG looks amazing but is obliviously very expensive as is a premium product.

Basically i want to be able to check my users browser History and if they are torrenting, thats it in a nutshell.

I have a standard TP link router with 2 managed Cisco switches.
I understand what want to do, but I don’t know what you want to achieve excluding the factor of cost.

The only way you’d get access to browser history is with device management, which isn’t cheap.
Even if you block torrenting, users will just use something else or bypass the firewall on the device with a VPN.

Assign static IPs, look who is downloading the most then cripple their bandwidth.
Eventually they will come to you to complain.
 

CHase

Cannon Fodder
Rating - 100%
3   0   0
Joined
Nov 30, 2011
Messages
66
Reaction score
1
Points
1,085
Location
Durban
A supply chain attack on a single platform excluding all their other offerings is less 'big time' more covert, especially when you look at those using Orion.


I understand what want to do, but I don’t know what you want to achieve excluding the factor of cost.

The only way you’d get access to browser history is with device management, which isn’t cheap.
Even if you block torrenting, users will just use something else or bypass the firewall on the device with a VPN.

Assign static IPs, look who is downloading the most then cripple their bandwidth.
Eventually they will come to you to complain.
Ye thanks bud. That sounds like a good idea.

I don't want to exclude costs completely but for 100 devices the costs are pretty high 'looking at some of the options.

With regards to hardware is there any you would suggest or is my TP link Archer vr600 and 2 x cisco switches enough ? I am happy to upgrade hardware if need be.
 

dalion619

Lurker
Rating - 100%
45   0   0
Joined
Oct 7, 2013
Messages
684
Reaction score
361
Points
1,885
Location
Villieria, Pretoria
Ye thanks bud. That sounds like a good idea.

I don't want to exclude costs completely but for 100 devices the costs are pretty high 'looking at some of the options.

With regards to hardware is there any you would suggest or is my TP link Archer vr600 and 2 x cisco switches enough ? I am happy to upgrade hardware if need be.

I also have the Archer series but your firmware has much better features than mine.

You'd want to use the "Reserve LAN IP Addresses" feature, so the devices always gets the same IP address, also take a look at limiting the DHCP IP range.
Then enable "Traffic Statistics", now at a basic level you have some stats on each device.

Before enabling "Bandwidth Control" basically QoS, I'd look at disabling port forwarding 'NAT' also UPnP since this has a major effect on BitTorrent but the technology has advanced amazingly with stuff like Instant.io - Streaming file transfer over WebTorrent
Since this is a consumer device, I highly doubt it was meant to perform QoS on 100+ devices but this is a experiment so if it works you can drop cash on something better.

Also test this yourself, download a torrent while making these changes to see if they make an impact.
 

CHase

Cannon Fodder
Rating - 100%
3   0   0
Joined
Nov 30, 2011
Messages
66
Reaction score
1
Points
1,085
Location
Durban
I also have the Archer series but your firmware has much better features than mine.

You'd want to use the "Reserve LAN IP Addresses" feature, so the devices always gets the same IP address, also take a look at limiting the DHCP IP range.
Then enable "Traffic Statistics", now at a basic level you have some stats on each device.

Before enabling "Bandwidth Control" basically QoS, I'd look at disabling port forwarding 'NAT' also UPnP since this has a major effect on BitTorrent but the technology has advanced amazingly with stuff like Instant.io - Streaming file transfer over WebTorrent
Since this is a consumer device, I highly doubt it was meant to perform QoS on 100+ devices but this is a experiment so if it works you can drop cash on something better.

Also test this yourself, download a torrent while making these changes to see if they make an impact.
Thanks for the great advise
 

lukekay

Junior Member
Rating - 0%
0   0   0
Joined
Nov 16, 2017
Messages
14
Reaction score
3
Points
335
Location
Cape Town
A few quick questions, what speed is your WAN/ISP link? & are you wanting a dedicated firewall appliance or custom hardware with a firewall OS installed on it?

QoS with 100 devices on a consumer device is definitely not recommended... :p
 

Top Donors

$320.00
$265.00
$210.00
$185.00
Top