Hey Tech Guys

[ricmac25]

I need to find out the username of a user on our network. I have the IP address of people who are using too much bandwidth, but they are students who bring their laptops to school. Without getting into too much detail, pretty much anyone can get on if they know the SSID. That's something we're working on for next year. I need to be able to find out who is logged in on those computers.

I currently have used nbtstat -a (IP) and that gives me the computer name, but I need the user.

 

[Lee]

The kid is probably listening to streaming audio or watching porn...

 

[Mrepp]

umm unfortunately unless there's individual student ID's which is sounds like there’s not. There’s no way to know who's logged in on there own personal laptop. The majority of home xp systems are set to auto login under Administrator so obtaining the name wouldn’t be sufficient. There is a way to setup a cut sheet. Several programs also over virtual cut sheets. I don’t know the specifics about your network but most formal school systems are setup with a static ip host side. This means that anyone that goes to the lab and sits in chair 3A will always have the same ip assigned to there computer. What you can do is setup this cut sheep and it wont tell you who they are but after all’s assigned it will tell you physically where they are so you can go find out whom they are. Just some idea’s to think about.


-Mark

 

[barney_rebel]

umm unfortunately unless there's individual student ID's which is sounds like there’s not. There’s no way to know who's logged in on there own personal laptop. The majority of home xp systems are set to auto login under Administrator so obtaining the name wouldn’t be sufficient. There is a way to setup a cut sheet. Several programs also over virtual cut sheets. I don’t know the specifics about your network but most formal school systems are setup with a static ip host side. This means that anyone that goes to the lab and sits in chair 3A will always have the same ip assigned to there computer. What you can do is setup this cut sheep and it wont tell you who they are but after all’s assigned it will tell you physically where they are so you can go find out whom they are. Just some idea’s to think about.


-Mark

[snapback]278697[/snapback]​

Right - what he could do is a ban on MAC address possibly and then have the student call for "tech support" if you will... then nail them when they do call.

 

[Mrepp]

Right - what he could do is a ban on MAC address possibly and then have the student call for "tech support" if you will... then nail them when they do call.

[snapback]278702[/snapback]​

Could do that too. It's just so much more fun to walk up behind them and watch em scamble :laugh: . Good solution though. :thumbs:

 

[SabresFan]

There are various software applications out there that can monitor network traffic and disable an abusive connection to the network when certain conditionis are met, probably fairly pricey but may solve some of the problems your having.

 

[Rob_k]

can you change the settings in your router to not broadcast the SSID? (i am assuming this is wireless network)
also, try some packet sniffing software, at lest you'll know what they are d/l'ing

edited for spelling, added comment

 

[ryn]

not really any hard and fast way since they can set their username to whatever they want.

for a future solution, maybe set up VPN which requires users to register unique usernames/pw attached to their student ID.

 

[ricmac25]

The kid is probably listening to streaming audio or watching porn...

[snapback]278690[/snapback]​

Using the firewall I was able to see that the one of the IP addresses in questions was on Morpheus. I found the kid in the computer lab, checked the IP on his laptop and told him to get off morpheus.

I don’t know the specifics about your network but most formal school systems are setup with a static ip host side.

The computer lab is setup with static IPs and they know which IP sits where, but if a student brings in a laptop, they obtain an IP automatically.

Right - what he could do is a ban on MAC address possibly and then have the student call for "tech support" if you will... then nail them when they do call.

[snapback]278702[/snapback]​

This may be a possibility. I just have to figure out how to do that on the firewall.

can you change the settings in your router to not broadcast the SSID? (i am assuming this is wireless network)
also, try some packet sniffing software, at lest you'll know what they are d/l'ing

edited for spelling, added comment

[snapback]278713[/snapback]​

We has a few issues with a few access points. At the beginning of the school year they were broadcasting the SSID. They no longer do that, but most of the kids have the SSID or can get it from someone now.

To complicate matters, the company we were using for wireless abandoned us and disappeared off the face of the earth. So we have to wait until the summer to do anything drastic.

 

[emodx]

The kid is probably listening to streaming audio or watching porn...

[snapback]278690[/snapback]​

Using the firewall I was able to see that the one of the IP addresses in questions was on Morpheus. I found the kid in the computer lab, checked the IP on his laptop and told him to get off morpheus.

I don’t know the specifics about your network but most formal school systems are setup with a static ip host side.

The computer lab is setup with static IPs and they know which IP sits where, but if a student brings in a laptop, they obtain an IP automatically.

Right - what he could do is a ban on MAC address possibly and then have the student call for "tech support" if you will... then nail them when they do call.

[snapback]278702[/snapback]​

This may be a possibility. I just have to figure out how to do that on the firewall.

can you change the settings in your router to not broadcast the SSID? (i am assuming this is wireless network)
also, try some packet sniffing software, at lest you'll know what they are d/l'ing

edited for spelling, added comment

[snapback]278713[/snapback]​

We has a few issues with a few access points. At the beginning of the school year they were broadcasting the SSID. They no longer do that, but most of the kids have the SSID or can get it from someone now.

To complicate matters, the company we were using for wireless abandoned us and disappeared off the face of the earth. So we have to wait until the summer to do anything drastic.

[snapback]278747[/snapback]​

It is a little work, but couldnt you change the SSID on the wiresless router, then change all the infor in the nodes in that lab. Or require a WEP to long on?

Emo

 

[emodx]

umm unfortunately unless there's individual student ID's which is sounds like there’s not. There’s no way to know who's logged in on there own personal laptop. The majority of home xp systems are set to auto login under Administrator so obtaining the name wouldn’t be sufficient. There is a way to setup a cut sheet. Several programs also over virtual cut sheets. I don’t know the specifics about your network but most formal school systems are setup with a static ip host side. This means that anyone that goes to the lab and sits in chair 3A will always have the same ip assigned to there computer. What you can do is setup this cut sheep and it wont tell you who they are but after all’s assigned it will tell you physically where they are so you can go find out whom they are. Just some idea’s to think about.


-Mark

[snapback]278697[/snapback]​

Right - what he could do is a ban on MAC address possibly and then have the student call for "tech support" if you will... then nail them when they do call.

[snapback]278702[/snapback]​

My Belkin wireless router allows for MAC address filtering. Just open the IP in a browser and log into the router. Perhaps your router will allow filtering also.
Emo

 

[moki]

The real solution is a bandwidth throttle on your gateway router. Then it really doesn't matter who is using it, no one can abuse it.

 

[emodx]

The real solution is a bandwidth throttle on your gateway router. Then it really doesn't matter who is using it, no one can abuse it.

[snapback]279016[/snapback]​

Well abuse can come in many forms, although bandwidth would be the main concern as you point out. Ric, did you come up with a solution?

 

[Fast4Dr]

Ric -

You should be blocking the ports that Morpheus uses in you r firewall. Working for a city school I would have thought that most ports/protocols aside from http, email, ftp, etc would have already been blocked