+ Post New Thread
Results 1 to 5 of 5
Internet Related/Filtering/Firewall Thread, Keeping a record of users internet activity in Technical; I have been asked to ensure that I can maintain a record of my users internet activity going back for ...
  1. #1

    Join Date
    Mar 2007
    Posts
    12
    Thank Post
    7
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Keeping a record of users internet activity

    I have been asked to ensure that I can maintain a record of my users internet activity going back for at least 2 weeks.

    I run Smoothwall Express 3.0 as a transparent proxy. Now I thought that Smoothwall was based on SQUID and recall having seen these logs on our old SQUID proxy so I guess they exist on the server. My question is how do I extract these logs in an intelligible form so that I can answer questions like what sites were viewed from a particular workstation at a particular time.

    Bob

  2. #2

    Join Date
    Jul 2009
    Posts
    531
    Thank Post
    42
    Thanked 99 Times in 84 Posts
    Rep Power
    67
    You can SSH into the smoothie and grab the squid.log from /var/log/squid/access.log or you could install something like the sarg mod and generate the reports that way.

  3. Thanks to computer_expert from:

    Diatom (27th June 2010)

  4. #3
    PEO
    PEO is offline
    PEO's Avatar
    Join Date
    Oct 2007
    Posts
    2,093
    Thank Post
    457
    Thanked 150 Times in 95 Posts
    Rep Power
    71
    I use sawmill for this, well worth it. I think the latest version (8) is about 200 but I've decided to stay with version 7 as it does a really good job

  5. Thanks to PEO from:

    Diatom (27th June 2010)

  6. #4

    Join Date
    Mar 2007
    Posts
    12
    Thank Post
    7
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by computer_expert View Post
    You can SSH into the smoothie and grab the squid.log from /var/log/squid/access.log or you could install something like the sarg mod and generate the reports that way.
    I have had a go at installing SARG on the smoothwall box following the instructions you quoted and it seems to have gone someway to a solution. I have the SARG tab in the LOGS area and can view how to configure the reports, however the daily, weekly and monthly hyperlinks are not available. I have seen reference to saving these settings on the first use of the logs and the need to wait for the log files too build. Does this mean that 24 hours must elapse from any save of the log configuration before the logs will appear? Also is it possible to view these logs in real time?

    Bob

  7. #5

    Join Date
    Jul 2009
    Posts
    531
    Thank Post
    42
    Thanked 99 Times in 84 Posts
    Rep Power
    67
    You can run the (report) scripts manually by just issuing "/usr/bin/sarg-reports daily", "/usr/bin/sarg-reports weekly" or "/usr/bin/sarg-reports monthly" at the command prompt and without the quotes.

    As far as i know SWE doesn't have any mods for realtime log viewers (apart from the IM logger). I can't remember (for sure) if the commercial smoothie has a realtime log viewer or not (but i do vaguely remember me using a realtime log viewer in the commercial smoothie)
    Last edited by computer_expert; 28th June 2010 at 06:58 PM.

SHARE:
+ Post New Thread

Similar Threads

  1. Inventory record keeping - In what ?
    By jamin100 in forum How do you do....it?
    Replies: 22
    Last Post: 7th May 2010, 08:17 AM
  2. Problem with some users internet access??
    By mattstevenson2005 in forum Wireless Networks
    Replies: 3
    Last Post: 7th November 2009, 09:06 AM
  3. Internet Explorer 8 + Network Users
    By faza in forum How do you do....it?
    Replies: 4
    Last Post: 29th September 2009, 02:23 PM
  4. Only Domain users access to internet?
    By jmair in forum Windows
    Replies: 15
    Last Post: 18th March 2008, 12:58 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •