| 摘要 |
A logging device, system and a method for managing network packets. The logging device includes a traffic capturing device receiving the network packets and filtering the network packets by selecting some of the network packets based on a predefined criteria. The logging device also includes a storage device storing the selected network packets and an analyzing component organizing the stored network packets in accordance with a user specified parameters. The traffic capturing component, the storage component, and the analyzing component are integrated in a single physical device providing a user with an ability to monitor real-time network traffic on the fly. The traffic capturing component selects the network packets for storage based on source and destination addresses of the network packets, based on a protocol of the network packets, based on a port designated, and based on whether a particular traffic session matches a predetermined signature.
|
