Wireshark-users: Re: [Wireshark-users] Need to record bandwidth used by branch office VPN tunnels

Date: Mon, 12 Aug 2013 19:12:17 +0000

You might consider using MRTG to capture and graphically represent utilization. http://mrtg.org

 

From: wireshark-users-bounces@xxxxxxxxxxxxx [mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of Gary Drost
Sent: Monday, August 12, 2013 12:19 PM
To: Community support list for Wireshark
Subject: Re: [Wireshark-users] Need to record bandwidth used by branch office VPN tunnels
Importance: Low

 

Giles

 

The firewall devices that are providing the VPN tunnels may have an option to record statistics data over a longer period of time.  I know that I can see the bandwidth being used over the a shorter timeframe now.

 

I will look into that option and see what I can find.

 

Thanks,

 

Gary

 

Pioneer Consulting Services, Inc.
Cell: (360) 739-2491
email: gary@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx

 

 

 

-------- Original Message --------
Subject: Re: [Wireshark-users] Need to record bandwidth used by branch
office VPN tunnels
From: Giles Coochey <giles@xxxxxxxxxxx>
Date: Fri, August 09, 2013 2:02 am
To: wireshark-users@xxxxxxxxxxxxx

On 08/08/2013 19:49, Gary Drost wrote:

I have a site with two branch offices.  The branch offices communicate back to the main office through Branch Office VPN tunnels over the Internet.

 

If the office IP structure is:

 

  Main - 192.168.1.x

  Br1 - 192.168.2.x

  Br2 - 192.168.3.x

 

Can I use Wireshark at the main site to record the traffic coming to the main site from the remote sites over those VPN tunnels in order to determine the current bandwidth used by that traffic?

 

Can I do it without having to capture all the traffic (i.e. can I report on the bandwidth the traffic is using without having to capture that traffic)?

 

I would expect that I will need to capture stats for about a week and don't want to have to save GB worth of wireshark data, unless I have to, in order to accomplish this.

 

Thanks,

 

Gary

 

 

Gary,

Wireshark isn't the best tool for this kind of thing. See if your routers support Netflow - there are both commercial and open source products that can interpret Netflow records and provide you with good accounting of your traffic usage.

If you need help with this then contact me off list for a quote to get this set up using open source tools, or you could try rolling your own.

-- 
Regards,
 
Giles Coochey, CCNP, CCNA, CCNAS
NetSecSpec Ltd
+44 (0) 8444 780677
+44 (0) 7983 877438
http://www.coochey.net
http://www.netsecspec.co.uk
giles@xxxxxxxxxxx

___________________________________________________________________________
Sent via: Wireshark-users mailing list <wireshark-users@xxxxxxxxxxxxx>
Archives: http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
mailto:wireshark-users-request@xxxxxxxxxxxxx?subject=unsubscribe




The information contained in this e-mail and any accompanying documents is intended for the sole use of the recipient to whom it is addressed, and may contain information that is privileged, confidential, and prohibited from disclosure under applicable law. If you are not the intended recipient, or authorized to receive this on behalf of the recipient, you are hereby notified that any review, use, disclosure, copying, or distribution is prohibited. If you are not the intended recipient(s), please contact the sender by e-mail and destroy all copies of the original message. Thank you.