Jay Ojo

Best Method to Exclude Benign Traffic from being logged by Decoders/Concentrators

Discussion created by Jay Ojo on Feb 16, 2017
Latest reply on Feb 27, 2017 by KEVIN DIENST

Hi,

 

I was wondering what are the community's thoughts on excluding known benign traffic from verified sources from being logged i.e youtube, dailymotion and other known video sites & general software updates i.e chrome, windows update etc. It will be good retain the possibility of logging the metadata of when the host visits the site but the packet data is useless and takes up unecessary space. I have looked into using the BPF but i believe this will not allow for metadata to be generated and i think it only works on IP addresses so i was thinking has any one come up with any other ways to achieve this?

 

 

Thanks,

Jay

Outcomes