Your IP:

Our Forums Have Moved!

Visit our new forums at http://community.opendns.com/forums/ to post on topics and read the latest content. These forums are now read-only archives.

K-12 Forums

Talk with other K-12 network administrators in your state.

Or see all states.

Categories

Vanilla 1.1.4 is a product of Lussumo. More Information: Documentation, Community Support.

This discussion has been inactive for longer than 30 days, and is thus closed.
    • CommentAuthorcynaptic1
    • CommentTimeAug 24th 2008
     permalink
    I'm somewhat confused. I'm in Colorado (mountain time) and I'm logging my network traffic. There are certain times in the dead of night that my recent activity goes from 100 hits to several thousand. I've checked the local PCs for access activity
    & none show as being on. (all are run through a PDC that locks domain access after 5pm).
    1st Q: are the times in the recent activity log in my local time or east coast, GMT or ?
    2nd Q: is it possible, a rogue pc, using the local network but not using Open DNS (and using some kind of P2P app) be causing the unusual amount of hits?
    • CommentAuthorrotblitz
    • CommentTimeAug 24th 2008
     permalink
    What utility do you use for logging into this "recent activity log"? It should be known for a certain application what times or time zones it uses. If this tool is good, it should show what applications/devices cause the traffic and what protocols and ports are affected.

    And yes, although not likely, it is possible that a local PC does not use OpenDNS and may cause increased traffic, e.g. P2P.

    Do you have any other devices beside workstations and laptops connected to your network, like Wii, iPhone, IP printers, fax machines, VoIP, and such? Could these be the reason for enhanced traffic?
    • CommentAuthorcynaptic1
    • CommentTimeAug 24th 2008
     permalink
    The "Recent Activity Log" is from OpenDNS Dashboard. There are no game stations, but there is a Primary domain controller, Savin Network printer - both are on 24/7, but auto updates are off for both windows and anti-virus (I manually update every day).
    • CommentAuthorrotblitz
    • CommentTimeAug 24th 2008
     permalink
    Ah, I see what you mean. As far as I heard, the stats are in UTC. If you want to find out about unknown mystery traffic, you may want to install Wireshark (http://www.wireshark.org/) in conjunction with WinPCap (http://www.winpcap.org/) and WinDump. This logs really every traffic going over a machine.
    • CommentAuthorcynaptic1
    • CommentTimeAug 25th 2008
     permalink
    I'll check out the apps. But back to my first Q, If the log is in UTC, all the times would then be 7 hours off? (mountain time being UTC-7)
    • CommentAuthorrotblitz
    • CommentTimeAug 25th 2008
     permalink
    Yep (but difference not verified). You need to take into consideration daylight saving, if you have this in your part of the world. UTC does not have daylight saving.
    See also http://www.timeanddate.com/worldclock/
    or http://www.worldtimezone.com/ or similar sites.

This discussion has been inactive for longer than 30 days, and is thus closed.