Page 1 of 1
is it possible to know which websites entered in Hotspot?
Posted: Tue May 29, 2012 11:09 am
by David1234
I'm using hotspot in a school , and I want to make sure no one is entering bad sites.
and also to know if someone is trying to enter the RB.
I know I can block in the firewall , but we all know there is 100000000 sites.
I don't want or need to know how is surfing , just where they serf?
possible?
I don't need to do this for spying. just for security.
Thanks ,
Re: is it possible to know which websites entered in Hotspot
Posted: Tue May 29, 2012 7:02 pm
by Feklar
The best option you are likely going to use in that situation is a dedicated proxy server that will be able to do content filtering, and logging of the HTTP requests. Trying to properly handle and process this on a layer3 device really won't work to well. It will require too much CPU power, and will miss a lot of content that you either want to log or block.
For logging and protecting the router, setting up appropriate firewall rules will be your best bet there as well. You can set up a logging action to keep track of the attempts if any, and then right after that drop the traffic.
Re: is it possible to know which websites entered in Hotspot
Posted: Wed May 30, 2012 12:02 am
by marioclep
You can use webproxy and a logging rule (webproxy, !debug) to see which sites are being used.
Regards
Re: is it possible to know which websites entered in Hotspot
Posted: Wed May 30, 2012 5:11 pm
by David1234
about the option of the webproxy
will it "kill" the router? or the free disk? I'm using RB411
and do you know how do I define it?
thanks ,
Re: is it possible to know which websites entered in Hotspot
Posted: Wed May 30, 2012 5:28 pm
by Feklar
If you are going to use the built in proxy on a 411, it might be a bit much for it to handle depending on the number of clients just from a CPU standpoint. You don't need to store any files locally for a proxy, so it won't necessarily thrash a disk, but it will generate a ton of logs, so you will want a dedicated syslog server if nothing else. The built in proxy is also not necessarily as capable as a full featured proxy like squid is for content filtering and other services, and you could still run a logging server on proxy server.
Re: is it possible to know which websites entered in Hotspot
Posted: Fri Jun 01, 2012 7:39 am
by skot
For logging and protecting the router, setting up appropriate firewall rules will be your best bet there as well. You can set up a logging action to keep track of the attempts if any, and then right after that drop the traffic.
Can you post rules on how to do this? Thanks.
Re: is it possible to know which websites entered in Hotspot
Posted: Fri Jun 01, 2012 3:08 pm
by rodolfo
or you can enable ip accounting and use the cgi inside webserver to get log
ip accounting traffic-accounting enable
enable web service then load the log calling
http://routerIP/accounting/ip.cgi
Re: is it possible to know which websites entered in Hotspot
Posted: Mon Jun 04, 2012 8:12 am
by imrankosi
hi,
Its possible to view and save the log file of the user (what they did on internet ). use web proxy, and nat setting and software to recive the logs .
Re: is it possible to know which websites entered in Hotspot
Posted: Wed Jun 06, 2012 9:31 am
by David1234
I will try it.
I thought it will be easier to do - but I will try and see what happened.