RE: [fw-wiz] performance management on pix firewalls
From: Crissup, John (MBNP is) (John.Crissup_at_us.millwardbrown.com)
Date: 05/22/03
- Previous message: Whiteside, Larry [contractor]: "[fw-wiz] Raptor for windows Syn flood response"
- Maybe in reply to: Luciano Z: "[fw-wiz] performance management on pix firewalls"
- Next in thread: Tim Glen: "Re: [fw-wiz] performance management on pix firewalls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: firewall-wizards@honor.icsalabs.com Date: Thu, 22 May 2003 11:24:40 -0500
I am working on this same task. We are currently evaluating LogAppliance
from FireVue (http://www.firevue.com/LA-PIX%20data***.pdf). It's
basically a syslog server with a web front end and a MySQL back end runnign
on a linux distribution. You configure your PIX to send debug level syslog
entries to it and it generates traffic logs based on the TCP connections and
teardown events. However, at this point in time, I'm not real impressed
with what I see. The box is around $20,000 including one year maintenance
and seems to be lacking in any real reporting features. I'm being told that
the reporting features are in the works and will be added soon. I also seem
to be having difficulty always finding the info I want and find myself going
back to my old syslog server looking for attack trends that this box seems
to mask.
I would love to know what other admins are using. I'm looking for
something that will allow me to see trends and also do some analysis graphs.
-- John -----Original Message----- From: Luciano Z [mailto:user_luciano@yahoo.com.br] Sent: Wednesday, May 21, 2003 2:01 PM To: firewall-wizards@honor.icsalabs.com Subject: [fw-wiz] performance management on pix firewalls Hi! I would like to hear some opinions from the list about this topic. What tools you are using, what metrics were adopted, etc. [] lwulff _______________________________________________________________________ Yahoo! Mail O melhor e-mail gratuito da internet: 6MB de espaço, antivírus, acesso POP3, filtro contra spam. http://br.mail.yahoo.com/ _______________________________________________ firewall-wizards mailing list firewall-wizards@honor.icsalabs.com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards _____________________________________________________ This email is confidential and intended solely for the use of the individual or organization to whom it is addressed. Any opinions or advice presented are solely those of the author and do not necessarily represent those of the Millward Brown Group of Companies. DO NOT copy, modify, distribute or take any action in reliance on this email if you are not the intended recipient. If you have received this email in error please notify the sender and delete this email from your system. Although this email has been checked for viruses and other defects, no responsibility can be accepted for any loss or damage arising from its receipt or use. ______________________________________________________ _______________________________________________ firewall-wizards mailing list firewall-wizards@honor.icsalabs.com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Whiteside, Larry [contractor]: "[fw-wiz] Raptor for windows Syn flood response"
- Maybe in reply to: Luciano Z: "[fw-wiz] performance management on pix firewalls"
- Next in thread: Tim Glen: "Re: [fw-wiz] performance management on pix firewalls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
