Does anyone know of any free software that will run on NT/W2K that can capture all packets for X seconds and then collate the data so that I can get an almost real-time chart of incoming and outgoing bandwidth use by protocol and by internal IP address? I'm having a hassle with doing this using my PIX as the syslog data is not real-time enough (I can get start time and end time for connections and amount of data transferred, but that doesn't give me packet direction - a connection will almost always have data going both ways - and I can only average the throughput over the connection period, which is useless when I have some connections open for > 24 hours at a time with bursty data). OK, so the relation to firewalls is slim - I did mention my PIX and lack of realtime performance data - and I've tried digging around a lot of sites. I could just log every packet to disk using something like snort and then write a script to collate the data but that seems like I'm reinventing the wheel and requires a lot of temporary disk storage for my heavy traffic line. Dan --- D.C. Crichton email: [EMAIL PROTECTED] Senior Systems Analyst tel: +44 (0)121 706 6000 Computer Manuals Ltd. fax: +44 (0)121 606 0477 Computer book info on the web: http://computer-manuals.co.uk/ Want to earn money? Join our affiliate network! http://computer-manuals.co.uk/affiliate/ - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
