The logical place for this is on the firewall, though there are alternatives.
So, what kind of firewall do they have? Can it send access logs to a syslog server, or does it have native reporting, perhaps available as an addon? If that's not feasible for some reason, you can check out various proxies, commercial or otherwise. We used a Barracuda for a while, and put it in line with the firewall as a transparent proxy. It's also possible to set it up out of line, and configure the browsers to talk to it, while allowing only the proxy to pass through the firewall. Before that, I used a FreeBSD box with a squid proxy on it, and used the logs from squid for any investigations. It's been a long time since we did that, but I'm sure there some decent reporting packages out there. Kurt On Tue, Jul 14, 2015 at 9:46 PM, David Florea <[email protected]> wrote: > I have a fairly small client who needs to be able to say they monitor the > web traffic of their employees. Not that they’ll probably do it often, > maybe less. But I’m searching for that simple tool that, installed on a > small domain or a workstation in that domain, can capture and report the > sites their users are hitting. Free is better, but not mandatory. So far > every tool I’ve looked at has been complex and questionable reporting > features. > > > > Thank you! > > > > Dave Florea
