Firewall Log Analysis

From: VN_Sabarinath@satyam-infoway.com
Date: Wed Jan 12 2000 - 21:05:45 PST

Next message: Shaun Moran: "RE: Tools to correlate attacks b/w diff. logs"

Previous message: Mayne, Peter: "Linux firewall options"
Next in thread: Saravana Ram: "Re: Firewall Log Analysis"
Reply: Saravana Ram: "Re: Firewall Log Analysis"
Reply: R. DuFresne: "Re: Firewall Log Analysis"
Reply: Bill Pennington: "Re: Firewall Log Analysis"
Reply: Chuck Swiger: "Re: Firewall Log Analysis"
Reply: Randy Grimshaw: "Re: Firewall Log Analysis"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

                                              Placed At :


Hello,

I administer 5 remote firewalls and wish to do seperate centralized anaysis of
the logfiles to generate custom reports.

To get the log files, I propose to regularly FTP the files (in zipped version,
once a day, automatically)from the firewalls to a centralised machine. This
machine run a log anaysis software.  The report may be FTP'ed back or put up on
a website.

1) Are there any better approaches to do this?

2) We currently use Webtrends for firewalls and VPN's.  Is there an unlimited
license version for this product? (We are an ISP).

3) Can you suggest other log analysis software?

Thanks/Regards

VN Sabarinath


Please Visit http://www.satyamonline.com for free e-mail

Next message: Shaun Moran: "RE: Tools to correlate attacks b/w diff. logs"
Previous message: Mayne, Peter: "Linux firewall options"
Next in thread: Saravana Ram: "Re: Firewall Log Analysis"
Reply: Saravana Ram: "Re: Firewall Log Analysis"
Reply: R. DuFresne: "Re: Firewall Log Analysis"
Reply: Bill Pennington: "Re: Firewall Log Analysis"
Reply: Chuck Swiger: "Re: Firewall Log Analysis"
Reply: Randy Grimshaw: "Re: Firewall Log Analysis"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:57:15 PDT