Microsoft Forefront Management Gateway 2010 - Which topology to choose for monitoring only server?

Posted by MadBoy on Server Fault See other posts from Server Fault or by MadBoy
Published on 2010-06-03T17:38:46Z Indexed on 2010/06/03 17:45 UTC
Read the original article Hit count: 286

Filed under:

monitoring

|

topology

|

forefront-2010

Hello,

I've installed Forefront and wanted to use it as monitoring traffic solution until we decide to put it as a router.

I've 2 nic's assigned to this virtual machine. One NIC has connected port which is "mirror port" of our WAN redirected on switch so it sees all the network traffic flying by. The other NIC is internet access. This server is located inside our lan network.

What topology should i choose and which options I should look at to be able to see which traffic is used (SMTP, WWW etc) and who does what? We had cases of infected machines with spam and we want to be able to see that some machine is sending large amounts of mails.

Is that possible ?

© Server Fault or respective owner

Related posts about monitoring

Issues with signal handling [closed]

as seen on Programmers - Search for 'Programmers'
I am trying to actually study the signal handling behavior in multiprocess system. I have a system where there are three signal generating processes generating signals of type SIGUSR1 and SIGUSR1. I have two handler processes that handle a particular type of signal. I have another monitoring process… >>> More
JMX Based Monitoring - Part Two - JVM Monitoring

as seen on Oracle Blogs - Search for 'Oracle Blogs'
This the second article in the series focussing on the JMX based monitoring capabilities possible with the Oracle Utilities Application Framework. In all versions of the Oracle utilities Application Framework, it is possible to use the basic JMX based monitoring available with the Java Virtual Machine… >>> More
JMX Based Monitoring - Part Three - Web App Server Monitoring

as seen on Oracle Blogs - Search for 'Oracle Blogs'
In the last blog entry I showed a technique for integrating a JMX console with Oracle WebLogic which is a standard feature of Oracle WebLogic 11g. Customers on other Web Application servers and other versions of Oracle WebLogic can refer to the documentation provided with the server to do a similar… >>> More
JMX Based Monitoring - Part Four - Business App Server Monitoring

as seen on Oracle Blogs - Search for 'Oracle Blogs'
In the last blog entry I talked about the Oracle Utilities Application Framework V4 feature for monitoring and managing aspects of the Web Application Server using JMX. In this blog entry I am going to discuss a similar new feature that allows JMX to be used for management and monitoring the Oracle… >>> More
Keeping track of File System Utilization in Ops Center 12c

as seen on Oracle Blogs - Search for 'Oracle Blogs'
Enterprise Manager Ops Center 12c provides significant monitoring capabilities, combined with very flexible incident management. These capabilities even extend to monitoring the file systems associated with Solaris or Linux assets. Depending on your needs you can monitor and manage incidents, or you… >>> More

Related posts about topology

Setup MSSQL replication with peer to peer topology: problem setting up Conflict Detection

as seen on Server Fault - Search for 'Server Fault'
Hi, I'm setting up a SQL Replication strategy, using MSSQL2008 with peer-to-peer publications (2 servers, each one subscribes to the other). I followed this HOWTO from MSDN, and the setup seems to be working fine: add a record to one table on server A, query on server B shows the new record. So far… >>> More
What's Switched LAN Topology ?

as seen on Super User - Search for 'Super User'
If somebody can tell me clearly what "Switched LAN Topology"is, it'll be great. I can't even understand what it's due to the following picture . Any answers are most welcome. >>> More
Resources for Programmatic Rendering of Topology Maps

as seen on Stack Overflow - Search for 'Stack Overflow'
Servus, Do you know of any frameworks, APIS, languages, or other resources that are well suited for drawing topology maps that allow a user to interact with objects on the map? I am not constrained by language choice and the program can be web-based, or stand-alone. I thought I would check before… >>> More
Basic questions about network topologies

as seen on Server Fault - Search for 'Server Fault'
I have just started learning about network topologies, but there are a lot of confusion about different types of network topologies i have learnt so far. First of all, BUS topology. If i have like 100 PCs in the same wire connected using BUS topology, and the network connection speed is 100Mbps,… >>> More
Layer 2 topology discovery

as seen on Server Fault - Search for 'Server Fault'
I have been given a network (it is a LAN) comprised of switches and I need to discover the topology of that. (There may be Link Aggregation Groups (LAGs) in the network as well.) I have done a lot of search on layer 2 topology discovery and I have seen many articles talking about using SNMP MIBs… >>> More