is it possible to know which websites entered in Hotspot?

David1234 · May 29, 2012, 8:09am

I’m using hotspot in a school , and I want to make sure no one is entering bad sites.
and also to know if someone is trying to enter the RB.
I know I can block in the firewall , but we all know there is 100000000 sites.
I don’t want or need to know how is surfing , just where they serf?
possible?
I don’t need to do this for spying. just for security.

Thanks ,

Feklar · May 29, 2012, 4:02pm

The best option you are likely going to use in that situation is a dedicated proxy server that will be able to do content filtering, and logging of the HTTP requests. Trying to properly handle and process this on a layer3 device really won’t work to well. It will require too much CPU power, and will miss a lot of content that you either want to log or block.

For logging and protecting the router, setting up appropriate firewall rules will be your best bet there as well. You can set up a logging action to keep track of the attempts if any, and then right after that drop the traffic.

marioclep · May 29, 2012, 9:02pm

You can use webproxy and a logging rule (webproxy, !debug) to see which sites are being used.

Regards

David1234 · May 30, 2012, 2:11pm

about the option of the webproxy
will it “kill” the router? or the free disk? I’m using RB411
and do you know how do I define it?

thanks ,

Feklar · May 30, 2012, 2:28pm

If you are going to use the built in proxy on a 411, it might be a bit much for it to handle depending on the number of clients just from a CPU standpoint. You don’t need to store any files locally for a proxy, so it won’t necessarily thrash a disk, but it will generate a ton of logs, so you will want a dedicated syslog server if nothing else. The built in proxy is also not necessarily as capable as a full featured proxy like squid is for content filtering and other services, and you could still run a logging server on proxy server.

skot · June 1, 2012, 4:39am

Can you post rules on how to do this? Thanks.

rodolfo · June 1, 2012, 12:08pm

or you can enable ip accounting and use the cgi inside webserver to get log
ip accounting traffic-accounting enable
enable web service then load the log calling http://routerIP/accounting/ip.cgi

imrankosi · June 4, 2012, 5:12am

hi,
Its possible to view and save the log file of the user (what they did on internet ). use web proxy, and nat setting and software to recive the logs .

David1234 · June 6, 2012, 6:31am

I will try it.
I thought it will be easier to do - but I will try and see what happened.