Raw Sockets Traffic Monitoring Method. How to configure Raw Sockets Monitoring in RdpGuard.
RdpGuard
Intrusion prevention system for your Windows Server
 
Follow:
Share:

Traffic Monitoring via Raw Sockets

This monitoring method works on limited set of Windows Server Editions (early Windows Server 2008 editions are not supported, but it works on Windows Server 2008 R2 and later) and may not work if there are 3-rd party firewalls or anti-viruses installed.

Advantage of this method is that it doesn't require any additional software like WinPcap to be installed.

Disadvantage of this method is that it may result in high CPU usage on heavy loaded servers. We recommend to use WinPcap/NPcap instead.

The following dialog allows you to configure Raw Sockets monitoring method.

Raw Sockets Configuration

Raw Sockets Configuration

Addresses to monitor

Monitor all IP Addresses

RdpGuard listens on the protocol specific ports for an each IP address associated with the machine. This may affect server performance if there are high number of IP addresses associated with the machine.

Monitor selected IP Addresses

In order to avoid performance decrease, you may consider limiting the number of IP addresses your server software is listening on. This could be configured in server software settings or via firewall rules.

When you done with the server software configuration, you may update addresses to monitor in RdpGuard.

RdpGuard 8.3.5 Free Trial

RdpGuard protects:

Social Connection
RdpGuard Logo
 
People like RdpGuard!
Our Other Products
FastGlacier
Windows Client for Amazon Glacier - new low-cost storage for data archiving and backup.
Copyright © 2012-2023 NetSDK Software. All rights reserved.  Terms of Use.  Privacy Policy.