Posted: 5/3/2011 6:46:14 PM EDT
| I know the use, and I use it myself. A network engineer will be doing some work. He stated to another person that he will need to see traffic, including the domain name of sites the users are on. I understand the need to see the throughput, lets say for a broadcast storm, why the sites themselves? Confidentaualty contract in place, put its just a piece of paper in reality. |
|
Grock, not sure what you're referring to but I'll take a WAG: If you're wondering why an auditor would want to resolve names to connections, think about someone connecting their phone to your internal wireless. (while adhock through their cell provider and running a NAT )...  an example of that "type thing" has gotten more than one admin fired. <edit> As far as "optimizing" with DNS: a lot of hired guns will black hole route torrents, reverse proxy and unauthorized file shares. Some of them will even round file youtube at the proxy switchport. (It's a way to make their QOS look like it worked miracles until they are long gone) Make them document every change and back up every config before they tinker with it. |