Re: [m0n0wall] Monitoring Total Bandwidth

From:	Gary <gary at kryptic dash x dot com>
To:	David <dlawley at gmail dot com>
Cc:	Don Munyak <don dot munyak at gmail dot com>, m0n0wall <m0n0wall at lists dot m0n0 dot ch>
Subject:	Re: [m0n0wall] Monitoring Total Bandwidth
Date:	Mon, 29 Aug 2005 18:22:40 -0400
Thats cool... I did try wall watcher which was good but I was also 
wondering if there was a program that can log the stats to my freebsd 
machine?  Also how do you get mynetwatch, is it free or something that 
you must pay for?  I do have a cisco 2900 catayst switch that I'd like 
to poll since the numbers reset back to zero when they hit 4GB worth of 
traffic. 

I know its a lot so if anyone has any answer to any piece of this email, 
I'd appreciate it!

Gary

David wrote:

> Ditto, and the tool to send reports to mynetwatchman is cool too.  
> Kinda scary sometimes. Here is just a few from today for me, not my 
> whole list.
>
>
>
> Incident Id 	Source IP 	Responsible
> Domain 	Incident
> Score 	Total Agent
> Count 	Total Event
> Count 	Top Issue 	Incident Status 	ISP Response
> 169848150 <http://www.mynetwatchman.com/LID.asp?IID=169848150> 
> 219.132.16.242 <http://219.132.16.242> 	chinanet.cn.net 
> <http://chinanet.cn.net> 	255450 	408 	5869 	SQL Slammer Worm 
> Escalated 	No Response
> 173782497 <http://www.mynetwatchman.com/LID.asp?IID=173782497> 
> 61.153.143.164 <http://61.153.143.164> 	chinanet.cn.net 
> <http://chinanet.cn.net> 	252340 	415 	5186 	SQL Slammer Worm 
> Escalated 	No Response
> 169729406 <http://www.mynetwatchman.com/LID.asp?IID=169729406> 
> 60.18.168.25 <http://60.18.168.25> 	cnc-noc.net <http://cnc-noc.net> 
> 246060 	413 	5819 	SQL Slammer Worm 	Escalated 	No Response
> 168839621 <http://www.mynetwatchman.com/LID.asp?IID=168839621> 
> 199.203.54.218 <http://199.203.54.218> 	netvision.net.il 
> <http://netvision.net.il> 	205470 	294 	3643 	SQL Slammer Worm 
> Escalated 	No Response
> 172917531 <http://www.mynetwatchman.com/LID.asp?IID=172917531> 
> 61.139.37.28 <http://61.139.37.28> 	chinanet.cn.net 
> <http://chinanet.cn.net> 	181400 	322 	3215 	SQL Slammer Worm 
> Escalated 	No Response
> 172098225 <http://www.mynetwatchman.com/LID.asp?IID=172098225> 
> 202.103.213.148 <http://202.103.213.148> 	chinanet.cn.net 
> <http://chinanet.cn.net> 	168100 	305 	2337 	SQL Slammer Worm 
> Escalated 	No Response
> 173678170 <http://www.mynetwatchman.com/LID.asp?IID=173678170> 
> 218.17.224.196 <http://218.17.224.196> 	chinanet.cn.net 
> <http://chinanet.cn.net> 	49350 	127 	164 	Spida Worm 	Escalated 	No 
> Response
> 173576496 <http://www.mynetwatchman.com/LID.asp?IID=173576496> 
> 166.70.89.206 <http://166.70.89.206> 	xmission.com 
> <http://xmission.com> 	36400 	93 	135 	RAdmin Probe 	Escalated 	No 
> Response
> 174245448 <http://www.mynetwatchman.com/LID.asp?IID=174245448> 
> 63.208.1.139 <http://63.208.1.139> 	iglobalnetworks.com 
> <http://iglobalnetworks.com> 	26600 	54 	249 	mySQL Exploit 
> Escalated 	No Response
> 174738679 <http://www.mynetwatchman.com/LID.asp?IID=174738679> 
> 61.129.51.41 <http://61.129.51.41> 	chinanet.cn.net 
> <http://chinanet.cn.net> 	20810 	52 	123 	SQL Slammer Worm 
> Escalated 	No Response
>
>
>
> On 8/29/05, *Don Munyak* <don dot munyak at gmail dot com 
> <mailto:don dot munyak at gmail dot com>> wrote:
>
>     http://www.wallwatcher.com/
>
>     Been using it in production for a while. Very cool stuff.
>
>     - Don
>
>     ---------------------------------------------------------------------
>     To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>     <mailto:m0n0wall dash unsubscribe at lists dot m0n0 dot ch>
>     For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>     <mailto:m0n0wall dash help at lists dot m0n0 dot ch>
>
>