traffic logging by user

  • 1
  • Question
  • Updated 4 years ago
  • Answered
We are looking at implementing Aerohive but traffic logging is a key requirement, what details will / would we get from logging on firewall rules??
We'd look to use internal syslog servers that double as DNS servers.

And does anyone know about OpenDNS and where the servers reside? are they EU based? And what level of logging could I expect??

Photo of anthony shailes

anthony shailes

  • 1 Post
  • 0 Reply Likes

Posted 4 years ago

  • 1
Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes
Being candid, if you want to do this properly, you would need to use PaloAlto's security applicances/firewalls or another vendor's similar products in concert with Aerohive's APs for your Internet filtering and logging. Definitely forget about OpenDNS. This is very much the same for other wireless vendors too.

Proper Single-Sign-On (SSO) support is something that a lot of us are working to achieve properly, in a variety of ways, to ensure a reliable, robust and secure implementation. (The integrations that are available today are usually fragile, hacked together and normally security vulnerable.)

Syslog should also only ever be used for local debugging purposes as it is, by design and intention, not a reliable protocol (no buffering, no retries in the case of packet loss, no encryption). It is only really suitable for troubleshooting.