<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title></title>
</head>
<body>
<div>I know several other places have used Nagios, and it should be in most linux distribution repositories. I've
not set up or used it myself, but should be some tutorials around the web.
<br />
<br />
Michael
<div>
<div>On Friday, May 4, 2018 at 1:51 PM, jsf <jfreeman@gmail.com> wrote:
<br />
</div>
<blockquote type="cite">
<div>
<div dir="ltr">Hi Michael,
<div> </div>
<div>Can you recommend a good SNMP capturing tool and a link to a setup how to? .. I'm really most interested in just
seeing how we're doing with our 150/25 circuit and whether or not we should increase/move to fiber/move to
symmetrical...</div>
<div> </div>
<div>Thanks!
<br />
</div>
<div>Joshua</div>
</div>
<div>
<div>On Fri, May 4, 2018 at 1:37 PM, <span dir="ltr"><<a href=
"mailto:contact@41magnum.net">contact@41magnum.net</a>></span> wrote:
<blockquote style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div>Joshua,
<br />
<br />
A network tap might work if you are only looking for mirrored traffic from one port. One thing to keep in mind is
that this is full duplex (TX & RX) so you will most likely need 2 capture interfaces + 3rd for remote access if you
need that. It might be possible to mirror a port off the firewall, but if it's a 1 for 1 mirror you may end up in
a situation where you don't see all the traffic (1Gbps TX + 1Gbps RX on 1Gbos link).
<br />
<br />
If all you are looking for is bandwidth, a SNMP monitoring tool might be a better choice for you. Most of these
will show you the average bandwidth over the polling period. Not precise, but usually good enough.
<br />
<br />
Michael
<br />
<div>
<div>On Friday, May 4, 2018 at 1:24 PM, Ken D'Ambrosio <<a href="mailto:ken@jots.org">ken@jots.org</a>> wrote:
<br />
</div>
<blockquote type="cite">
<div style="font-size:10pt;font-family:Verdana, Geneva, sans-serif;">
<p>Hey, Joshua. Honestly, you're "doing it wrong," for a few reasons.</p>
<p>* Capturing *everything* would be huge -- almost certainly fill up your hard disk in relatively short order.</p>
<p>* Wireshark isn't the thing to capture it with. If you want that, dump it using "tcpdump" (or its Windows
equivalent), and then look at it later, with Wireshark.</p>
<p>* But, as noted in the initial point, that gets big, VERY fast. Instead, I would recommend just watching
metrics -- does Windows show byte counts on an interface? If so, monitor that minute-by-minute. Or --
probably an even better choice -- get some software that will monitor per-IP usage. Though others may have actual
suggestions on software to use, as I don't.</p>
<p>However, NONE of that will even work if you don't have a switch set up with port mirroring. Ethernet these
days is switched, which means that simply plugging into the same switch will only show you broadcast traffic, not
point-to-point traffic. So you'd miss out on something like 99% of the data. Given the scenario you mention
(basically, "Comcast modem"), I think you'll probably need to pick up a smart Ethernet switch -- one that has port
mirroring -- to even get started down this road.</p>
<p>All of this is relatively non-trivial, but could probably be worked through if you're really trying to make it
happen.</p>
<p>-Ken</p>
<p> </p>
<p>On 2018-05-04 13:09, jsf wrote:</p>
<blockquote type="cite" style="padding:0 .4em;border-left:#1010ff 2px solid;margin:0;">
<div dir="ltr"><span>Hi friends,</span>
<div> </div>
<div>I am IT dir. at a small independent school in CT nowadays. I have a comcast modem. my firewall plugs
into a wired port in the comcast modem. I have an old PC running windows 8.1. I have installed wireshark on
the old PC. I have plugged the old PC's network interface into another wired port on the comcast modem.
Ideally I would like to use wireshark to capture EVERYTHING going across the modem - basically everything that is going
in and out of the connection between the modem and my firewall. I am at a loss w/r/t how to set this up
properly.</div>
<div> </div>
<div>a step-by-step how to, or even a quick shared screen session or phone call would be appreciated.</div>
<div> </div>
<div>I am trying to get a sense regarding the schools' bandwidth usage.. we have 150/25 over coax. i think
performance is pretty good most of the time (we are a small school).. but not everyone agrees with me. If we have
too little bandwidth (are hitting a max periodically) I'd like to know that.</div>
<div> </div>
<div>Thanks in advance for help with this and recommendations about anything else I should put on this old PC to help
with this exercise.</div>
<div> </div>
<div>best wishes,</div>
<div> </div>
<div>Joshua
<div> </div>
<span style="color:#888888;">--</span>
<div dir="ltr"><a target="_blank" href="http://www.linkedin.com/in/jfreeman">[View Joshua S. Freeman's profile on
LinkedIn]</a>
<br />
</div>
</div>
</div>
<span> </span>
<div style="margin:0;padding:0;font-family:monospace;">_______________________________________________
<br />
gnhlug-discuss mailing list
<br />
<a href="mailto:gnhlug-discuss@mail.gnhlug.org">gnhlug-discuss@mail.gnhlug.org</a>
<br />
<a target="_blank" href=
"http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/">http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/</a></div>
</blockquote>
<p> </p>
</div>
</blockquote>
</div>
</div>
</blockquote>
</div>
<div> </div>
--
<div dir="ltr"><a target="_blank" href="http://www.linkedin.com/in/jfreeman">[View Joshua S. Freeman's profile on
LinkedIn]</a>
<br />
</div>
</div>
</div>
</blockquote>
</div>
</div>
</body>
</html>