- put it between router and LAN
- check what websites and other network resources client’s employees are accessing (all together)
- check per IP or by other autentification method what is/was doing (network traffic)

* it should be able to check in few different periods, like today, this week, this month.

All with nice graphs, data, etc.

Look at http://www.kerio.eu/kwf_star.html

Something like that. Any ideas?

i will say HI to you everyday

Have fun with HeX, anything you guys can just poke us at Freenode #rawpacket, we don’t mind for a “Hi”

Cheers ;]

@Navin: as above, I even play up to being a geek, geeky t-shirts, I get made fun of at work with my “there is no place like 127.0.0.1″ and others. I don’t have glasses and I am not scrawny, or overweight… I do play board games and role playing though, as my site attests to.
I agree with everything else though, I am highly suspect of any “IT” person who doesn’t play with computers, or code at home. It is like a thin chef. How do they really know what they are talking about, how do they have the passion to go that extra mile.
Hex downloaded and burning as we speak to I’ll have to be off the thrill of the exploit is calling my name.

But the fact is tht such people don’t really exist….I myself am a proud Nerd( as I mentioned here http://lifeofnavin.blogspot.com/2008/06/how-nerdy-art-thou.html)…But tht doesnt mean I like to lock myself ina room with my PC all day loong..I do have social friends (or normies as some uber-geeks would call em)…and I do like to watch a good movie/read a good book now N then…the problem is tht we don’t encourage real talent into the right spots…Somputer experts work 9-5 jobs as bank managers while entrepreneurs are stuck in fields tht they don’t really know abt…..when someone pwns a site, its generally just for the satisfaction of knowing tht u still know the trade…but when Ure site gets pwned, u cant really trust the securtiy guy coz he’s just gotten a degree…who’se to decide if he really knows the practicals of hacking??

thanks pal for the insights and advice. I actually read your comment 5x and all I can say is thank you. I’ve been battling with this issue for months now because I really don’t know what would be the best approach to those kinds of things.

I got to do a lot more readings.

Goodluck on Hex. Well its up to the guy. Old saying goes, “if there’s a will, there’s a way”

@lyz: sorry but I don’t buy that, you go out and do certification. You read blog posts, you read news articles, you play with stuff on your home lab and you become the holistic network/security/programming guru you should be.
I know network guys that have a couple racks of switches and routers at home. I know a web developer that has 4+ web servers at home and knocks up a website for fun. I myself spend most of my free time reading security articles, and listening to security podcasts. I play in my walled off lab at home hacking and pwning my own boxes and then locking them down and trying again, I find it fun, some may call it lame. Hex will get a try out this weekend.