Hi
Our Sonicwall PRO2040 spits out nice traffic logs with dst/src IP, amount of rx/tx data, gets urls from http (host + arg), protocol etc to our logging infrastructure (graylog) through syslog protocol.
The regulations requires us to log ALL of our internet traffic (in case of some abuse etc). Also the device is getting older and older, it's not inspecting encrypted traffic, so we can't block https traffic by host name, also we need to log https traffic too, now we have only IP and port, checking IP in whois is a bit painful and it's just not enough.
Can anyone suggest some device with ssl inspection, able to block and log https (spdy? http/2?) traffic with amount of rx/tx data (optional) and syslog support?
Currently we're contemplating FortiGate 50E, can someone confirm it has features we're looking for?
No comments:
Post a Comment