Traffic Monitoring via Raw Sockets
This monitoring method works on limited set of Windows Server Editions (2008 is not supported) and may not work if there are 3-rd party firewalls or anti-viruses installed.
Advantage of this method is that it doesn't require any additional software like WinPcap to be installed.
The following dialog allows you to configure Raw Sockets monitoring method.
Raw Sockets Configuration
Addresses to monitor
Monitor all IP Addresses
RdpGuard listens on the protocol specific ports for an each IP address associated with the machine.
This may affect server performance if there are high number of IP addresses associated with the machine.
Monitor selected IP Addresses
In order to avoid performance decrease, you may consider limiting the number of IP addresses your server software is listening on.
This could be configured in server software settings or via firewall rules.
When you done with the server software configuration, you may update addresses to monitor in RdpGuard.