[fw-wiz] NetScreen Logging with NSRP
- From: Kerry Milestone <km4@xxxxxxxxxxxx>
- Date: Wed, 26 Mar 2008 12:47:04 +0000
Hello,
I am looking at doing an audit of the policies installed on a HA
passive/active firewall setup with NSRP. The primary is running at
about 80% CPU or so, the backup is about 5%. As such, I am a bit
hesitant (to say the least) about putting policy logging on as it may
kill the firewall.
Is it possible somehow to have logging on just the redundant firewall?
My other, perhaps long way of doing this is to convert the current
policies and, say, parse into snort rules and observe through a port tap
- the number of 'positive' hits on the IDS.
Does anyone have any other suggestions as to how to achieve what I want
to do?
Many thanks,
Kerry Milestone
--
Kerry Milestone
Senior Systems Engineer - Network Project Team
The Wellcome Trust Sanger Institute
Wellcome Trust Genome Campus Email: km4@xxxxxxxxxxxx
Hinxton, Cambridge CB10 1SD Phone: (+44) 1223 492320
United Kingdom
--
The Wellcome Trust Sanger Institute is operated by Genome Research
Limited, a charity registered in England with number 1021457 and a
company registered in England with number 2742969, whose registered
office is 215 Euston Road, London, NW1 2BE.
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
- Follow-Ups:
- Re: [fw-wiz] NetScreen Logging with NSRP
- From: Avishai Wool
- Re: [fw-wiz] NetScreen Logging with NSRP
- Prev by Date: Re: [fw-wiz] Web Services and Firewall/Network Architecture
- Next by Date: [fw-wiz] Provocative Query: Are firewalls obsolete in a world involving enterprise WebService SOA
- Previous by thread: [fw-wiz] PIX VPN Logging question
- Next by thread: Re: [fw-wiz] NetScreen Logging with NSRP
- Index(es):
Relevant Pages
|
