Presentation is loading. Please wait.

Presentation is loading. Please wait.

Monitoring Your Network A College Approach Chris Bamber, IT Systems Manager Somerville College Confidentiality: The contents of this presentation and workshop.

Published byLiliana Beasley Modified over 9 years ago

Similar presentations

Presentation on theme: "Monitoring Your Network A College Approach Chris Bamber, IT Systems Manager Somerville College Confidentiality: The contents of this presentation and workshop."— Presentation transcript:

1 Monitoring Your Network A College Approach Chris Bamber, IT Systems Manager Somerville College Confidentiality: The contents of this presentation and workshop discussion are to be held in strictest confidence.

2 29th June 2000 Christopher Bamber 2 Documents to Read Oxford University's Computer Usage Rules and Etiquette http://www.ox.ac.uk/it/rules/ Somerville Rules for Computer Use http://www.some.ox.ac.uk/cp_rules.htm

3 29th June 2000 Christopher Bamber 3 What We Can Use the Tools for Identifying unofficial servers or services Monitoring usage and traffic statistics Protecting your network from the world Troubleshooting your network Investigating a security incident Keeping logs of users activities for accountability

4 29th June 2000 Christopher Bamber 4 The Tools Used WS_Ping_ProPack XploiterStat Lite Windows NT Event Viewer Sophos Anti-Virus for NT Sophos Anti-Virus ADMIN Tool Sophos Anti-Virus for Exchange Elron Command View Firewall for NT eTrust Intrusion Detection (Sessionwall) Transcend Workgroup Manager Network Watch from NT Resource Kit

5 29th June 2000 Christopher Bamber 5 Somerville College Network

6 29th June 2000 Christopher Bamber 6 Ws_Ping_ProPack This tool gives you basic windows interface into a few very handy utils:- Ping, Scan, TraceRoute, Whois, Lookup etc Doing regular scans of common ports on your network will help to discover unauthorised services or servers Very quick and simple, also cheap £30.00 for a licence

7 29th June 2000 Christopher Bamber 7 A Port Scan

8 29th June 2000 Christopher Bamber 8 XploiterStat Lite Port monitoring software, TCP and UDP Free, upgrade available at approx. £30.00 Produce text logs of active connections to your machine or servers Handy for putting a trace on a machine your concerned about

9 29th June 2000 Christopher Bamber 9 Windows NT Event Viewer Comes with MS NT Server,it’s FREE! Use it to look at your logs Make sure you have some logs Export your logs to examine them in Excel, it’s quicker More advanced version available as a plug-in in Windows 2000

10 29th June 2000 Christopher Bamber 10 Sophos Anti-virus for NT It’s FREE!, site licensed to Oxford University Protect your workstations from viruses Use a protected install so users can’t remove it Make it mandatory for all computers connected to your network Keep it updated…

11 29th June 2000 Christopher Bamber 11 Sophos Anti-Virus ADMIN Tool It’s FREE! Allows you to install SAV onto your NT workstations remotely You need to have their admin shares(C$) available for the initial install Allows you to update and change the configuration of SAV Monitors the status and current rollout of the IDE files Allows you to force an update to the user workstation Quick and simple

12 29th June 2000 Christopher Bamber 12 Sophos Sweep for Exchange If you really have to run a mail server, install some virus scanning software This is currently in Beta at the moment, but it works! Again FREE!, available on site licence SAVI is also available to connect to other mail server software MAILsweeper is available for most systems and uses SAVI

13 29th June 2000 Christopher Bamber 13 Elron CV Firewall for NT Offers fully IPSEC compliant VPN Capabilities Includes NAT, DMZ and User Authentication Delivers industry-leading, 3rd generation, Stateful Multilayer Inspection (SMLI) technology Is easy to manage with a point and click interface Cost - £1.7K, available from MIS Corporate Defence Solutions

14 29th June 2000 Christopher Bamber 14 Drill Down to View Rule Details

15 29th June 2000 Christopher Bamber 15 Specific Servers on Ports

16 29th June 2000 Christopher Bamber 16 Custom Defined Ports - Tuples

17 29th June 2000 Christopher Bamber 17 Log File View

18 29th June 2000 Christopher Bamber 18 Log Filtering The latest version of the software now has a very powerful filtering ability for log files This allows for quick analysis and troubleshooting of the network and firewall

19 29th June 2000 Christopher Bamber 19 Application Layer Commands Available for FTP, inbound Email, News and Web Allows you to lock down the common ports to valid commands only Stops ICQ, Instant Messaging from using these ports

20 29th June 2000 Christopher Bamber 20 eTrust Intrusion Detection Providing real-time, non- intrusive detection, policy- based alerts, and automatic prevention Integrated anti-virus engine with automatic signature updates Dynamic URL blocking and logging Predefined policies for a wide range of attacks Comprehensive built-in reports

21 29th June 2000 Christopher Bamber 21 Transcend Workgroup Manager Network management utility for managing 3com hubs and switches Workgroup & Enterprise edition will no longer be available from the end of June 2000 (so order today!!) Support will continue for 5 years

22 29th June 2000 Christopher Bamber 22 Network Watch (NT Resource Kit) Allows you to view and manage the network shares on your NT Servers Includes the hidden shares ($) Handy to see who’s connecting to what on your server

23 29th June 2000 Christopher Bamber 23 Software Sites WS_Ping_ProPack - http://www.ipswitch.com/Products/WS_Ping/index.htmlhttp://www.ipswitch.com/Products/WS_Ping/index.html XploiterStat Lite - http://www.xploiter.com/tambu/totostat.shtmlhttp://www.xploiter.com/tambu/totostat.shtml Sophos Anti-Virus – http://www.sophos.com/http://www.sophos.com/ MAILsweeper - http://www.mimesweeper.com/http://www.mimesweeper.com/ Elron Firewall - http://www.elronsoftware.com/enterprise/cvfirewall.htmhttp://www.elronsoftware.com/enterprise/cvfirewall.htm eTrust - http://www.cai.com/solutions/enterprise/etrust/intrusion_detection/http://www.cai.com/solutions/enterprise/etrust/intrusion_detection/ Transcend - http://www.3com.com/solutions/enterprise/networkmanagement/index.htmlhttp://www.3com.com/solutions/enterprise/networkmanagement/index.html MIS Corporate Defence Solutions – http://www.mis-cds.com/http://www.mis-cds.com/ – contact James Guttridge 01622 723459

24 29th June 2000 Christopher Bamber 24 Contact Information Christopher Bamber IT Systems Manager Somerville College, OX2 6HD E-mail: chris.bamber@some.ox.ac.ukchris.bamber@some.ox.ac.uk Tel: 01865 2 70661

Download ppt "Monitoring Your Network A College Approach Chris Bamber, IT Systems Manager Somerville College Confidentiality: The contents of this presentation and workshop."

Similar presentations

Presented by Nikita Shah 5th IT ( )

Presented by Nikita Shah 5th IT ( )
AVG Internet Security 7.5 Product presentation.

AVG Internet Security 7.5 Product presentation.
Introducing Kaspersky OpenSpace TM Security Introducing Kaspersky ® OpenSpace TM Security Available February 15, 2007.

Introducing Kaspersky OpenSpace TM Security Introducing Kaspersky ® OpenSpace TM Security Available February 15, 2007.
Monitoring Your Network Chris Bamber, IT Systems Manager Somerville College Confidentiality: The contents of this presentation and workshop discussion.

Monitoring Your Network Chris Bamber, IT Systems Manager Somerville College Confidentiality: The contents of this presentation and workshop discussion.
Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.

Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Introduction to ISA 2004 Dana Epp Microsoft Security MVP.

Introduction to ISA 2004 Dana Epp Microsoft Security MVP.
©2005 Check Point Software Technologies Ltd. Proprietary & Confidential Check Point Software SSL VPN Solutions Technical Overview Thorsten Schuberth Technical.

©2005 Check Point Software Technologies Ltd. Proprietary & Confidential Check Point Software SSL VPN Solutions Technical Overview Thorsten Schuberth Technical.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Chapter 12 Network Security.

Chapter 12 Network Security.
© 2009 VMware Inc. All rights reserved VMware Updates Orlando VMware User Group – April 2011 Ryan Johnson VMware, Inc. Technical Account Manager Professional.

© 2009 VMware Inc. All rights reserved VMware Updates Orlando VMware User Group – April 2011 Ryan Johnson VMware, Inc. Technical Account Manager Professional.
Beth Johnson April 27, 1998. What is a Firewall Firewall mechanisms are used to control internet access An organization places a firewall at each external.

Beth Johnson April 27, What is a Firewall Firewall mechanisms are used to control internet access An organization places a firewall at each external.
Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
Maintaining and Updating Windows Server 2008

Maintaining and Updating Windows Server 2008
Netop Remote Control Trusted. Secure. Experienced.

Netop Remote Control Trusted. Secure. Experienced.
Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.

Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.
Windows Anti-virus and Security WNUG Meeting 2-7-2002.

Windows Anti-virus and Security WNUG Meeting
Kaspersky Open Space Security: Release 2 World-class security solution for your business.

Kaspersky Open Space Security: Release 2 World-class security solution for your business.
Www.sophos.com Sophos anti-virus and anti-spam for business OARNET October 13, 2004.

Sophos anti-virus and anti-spam for business OARNET October 13, 2004.
Customized solutions. Keep It Secure Contents  Protection objectives  Endpoint and server software  Protection.

Customized solutions. Keep It Secure Contents  Protection objectives  Endpoint and server software  Protection.

Similar presentations

Ads by Google