Any suggestion about how to correctly monitor HTTP Traffic from a certain host ?
I just received a request to log, for a specific period of time, http traffic from a host on the inside network to internet and to generate a sort of human readable output format.
It can either be log to a syslog, FTP etc...
I know how to use filter, but this request got me a little confused.
Any idea ?