This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Detailed logging for VPN users

Hello,
One of our clients is using SSL VPN to our Astaro for secure traffic browsing… Is there a way we can log not only who has used the device but also when and where they went to? I also want to log these users by user name and not IP address, having it log by an IP address from the VPN pool doesn’t really help…

Thoughts??

This thread was automatically locked due to age.

0 KSeemann over 15 years ago

VPN Reporting is planned for Astaro v8 (according to this Reporting: VPN Activity)
Cancel
Vote Up 0 Vote Down

Cancel
0 dburg507 over 15 years ago in reply to KSeemann

that looks promissing and would be great but I need something now...
Cancel
Vote Up 0 Vote Down

Cancel
0 KSeemann over 15 years ago
You can try it with Tools like Hostmonitor / ServersAlive or the like...

Ping your VPN Pool IP´s frequently and log it to get the online/offline State

If someone is online use WMI to get Infos about the connected Client Computer

You can use the Commandline Tool "wmic"

For Example:
wmic /node:_IP-Adress_ computersystem get UserName, Domain, Name

That will give you the Username (including Domain), the Domain that Client belongs to and the Computername.

and if you look around WMI, there is much more Info to get...
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 15 years ago

The data you need is in the SSL VPN log file. You can search on event="Connection to get only lines with start and terminated. That gives you the time and username; it should be straightforward to set up a script to get the information you want.

If you have a Web Security subscription, the 'Content Filter (HTTP)' log and 'Reporting >> Web Security' can give you etails on what sites were accessed.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel