27 10, 2010

Watch your TMG's waist line. Switch log format and reduce fat now!

By | 2010-10-27T04:57:46+00:00 October 27th, 2010|Firewall Analysis, Log File Analysis, Microsoft ISA Server, Microsoft Threat Management Gateway, storages, System Administration, Tips and Best Practices, Uncategorized, Vantage, Web Browsing Analysis, WebSpy|0 Comments

We often recommend customers using Microsoft ISA or TMG switch their logging to W3C text file, in order to get the best possible import speed, and also because the text logs are much easier to access from a remote machine (see my previous article on accessing TMG’s SQL Express Log database). Logging to the default [...]

29 07, 2010

Microsoft Forefront TMG logs size fields the wrong way around

By | 2010-07-29T04:49:04+00:00 July 29th, 2010|Firewall Analysis, Log File Analysis, Microsoft Threat Management Gateway, Reports, Tips and Best Practices, Uncategorized, Vantage, Web Browsing Analysis, WebSpy|0 Comments

If you’re using Microsoft Forefront Threat Management Gateway, there is a bug in the logging that causes Bytes Sent and Bytes Received to be logged in reverse. This seems to only affect the Web Proxy logs – both SQL and W3c . We noticed in a few web reports, that people were generally uploading a [...]

19 07, 2010

Why there is so much anonymous traffic in Microsoft TMG and ISA logs

By | 2010-07-19T03:18:29+00:00 July 19th, 2010|Aliases, Firewall Analysis, How To, Log File Analysis, Microsoft ISA Server, Microsoft Threat Management Gateway, Reports, Tips and Best Practices, Uncategorized, Vantage, Web Browsing Analysis, WebSpy|5 Comments

One of the most common questions we get asked by users of Microsoft TMG and ISA is why there is so much traffic attributed to the Anonymous user. Even though unauthenticated access to the web has been disabled, they still see the ‘Anonymous’ user as one of the top users in their reports. So let’s [...]

18 06, 2010

Video: How to use WebSpy Vantage to report on IronPort log files

By | 2010-06-18T02:01:16+00:00 June 18th, 2010|Aliases, Firewall Analysis, How To, IronPort, Log File Analysis, Reports, Scheduled Tasks, Tips and Best Practices, Uncategorized, Vantage, Web Browsing Analysis, Web Module, WebSpy|0 Comments

I’ve produced a video on how to use WebSpy Vantage to report on IronPort’s Web Security Appliance’s access log files. It is quite a detailed look at the key tasks involved in setting up and using WebSpy Vantage with IronPort WSA access logs, and is therefore divided into several parts. The videos take you through [...]

27 05, 2010

How to report on bandwidth utilization using Cisco devices

By | 2010-05-27T07:59:13+00:00 May 27th, 2010|Firewall Analysis, FlowMonitor, How To, Reports, System Administration, Tips and Best Practices, Uncategorized, Vantage, WebSpy|1 Comment

Today I was speaking to a customer that had the following reporting request. "I would like to know how much of my bandwidth is being eaten by each protocol. I will then use this information to determine if circuit may need to be increased due to increased traffic". This customer was collecting syslog messages from a Cisco Firewall, then using WebSpy Vantage to generate reports. There's a simpler method.

21 05, 2010

How WebSpy Vantage uses your CPUs

By | 2010-05-21T07:02:32+00:00 May 21st, 2010|Reports, System Administration, Tips and Best Practices, Uncategorized, Vantage, WebSpy|0 Comments

I’m frequently asked how WebSpy Vantage utilizes a systems CPU resources. Sometimes you may notice Vantage utilizing 100% of your machine's CPU power, and other times it will be hardly touched. So here is an overview of how the software works internally so you can understand when your CPUs will and won’t be pushed.

20 05, 2010

Vantage Update 2.2.0.43

By | 2010-05-20T06:45:45+00:00 May 20th, 2010|IronPort, Loaders, Log File Analysis, Microsoft ISA Server, Microsoft Threat Management Gateway, Software Updates, Tips and Best Practices, Uncategorized, Vantage, Web Module, WebSpy|0 Comments

We've just released an auto update for WebSpy Vantage (Premium, Giga and Ultimate) as well as the Web Module. This is a great update for Vantage Ultimate users as we've introduced a new feature/tab into the Web Module called 'Dynamic Reports'. Here's the full list of changes since the last auto update (2.2.0.32 on the 14th April 2010).

12 05, 2010

Dedicated WebSpy and Forefront TMG pages – Everything you need to know about TMG Log Reporting

By | 2010-05-12T04:14:53+00:00 May 12th, 2010|How To, Microsoft Threat Management Gateway, Reports, Sales and Marketing, Tips and Best Practices, Uncategorized, WebSpy|0 Comments

Microsoft Forefront Threat Management Gateway (TMG) popularity is starting to pick up. WebSpy added support for analyzing and reporting on TMG logs even before the public release and have been improving our compatibility ever since. […]

11 05, 2010

How and When WebSpy Vantage’s Web Server Reporting Beats Google Analytics

By | 2010-05-11T10:36:01+00:00 May 11th, 2010|How To, Sales and Marketing, Tips and Best Practices, Uncategorized|0 Comments

I’m actually not trying to compare WebSpy Vantage with Google Analytics (GA), it’s like comparing apples and oranges. Both solutions provide powerful ways of tracking how visitors find your site and how they navigate through it, ideally giving you rich insights into your website traffic and marketing effectiveness. However, GA is a pure web analytics [...]