Re: pix log analyser
Stephen.H.Murphy_at_allianz.ie
Date: 05/26/03
- Previous message: opus: "Re: pix log analyser"
- Maybe in reply to: haikel: "pix log analyser"
- Next in thread: Haebler, Marcus (Marcus): "RE: pix log analyser"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: pen-test@securityfocus.com Date: Mon, 26 May 2003 15:55:09 +0000
Haikel,
You could take a look at the three listed below. All require a bit of tweaking
to obtain meaningful info, but my personal favourites are no's.2 and 3.
1. fwanalog
Uses the popular tool 'analog' to graph the PIX logs. To facilitate this, it
first converts the PIX logs into a format that analog may understand (by
default, analog expects standard web server logs as input). As a consequence of
this, the appearance of some of the data in the generated report may not be
entirely clear at first glance.
fwanalog produces three web-based reports (a report for today, a report for the
last week, and a report covering the period from when the logs started to the
current date), and one text based report (a report for today).
2. fwlogsum
fwlogsum was written to summarise Checkpoint firewall logs, but add-on
converters allow other firewall log formats to be converted to a format that
fwlogsum understands. Because of this conversion process, the meaning/detail of
some of the data may be lost.
3. fwlogwatch
fwlogwatch summarises logs from a number of different firewall types. It has a
lot of options that allow tailoring of the report that is produced.
Hope this helps somewhat. Good luck.
Steve M.
********************************************************************
Please Note:
Our e-mail address is now 'allianz.ie'
Visit our website at http://www.allianz.ie
Disclaimer :
The information contained and transmitted in this e-mail is
confidential information, and is intended only for the
named recipient to which it is addressed. The content of
this e-mail may not have been sent with the authority of
the company. If the reader of this message is not the
named recipient or a person responsible for delivering it
to the named recipient, you are notified that the review,
dissemination, distribution, transmission, printing or copying,
forwarding, or any other use of this message or any part of
it, including any attachments, is strictly prohibited. If you
have received this communication in error, please delete
the e-mail and destroy all record of this communication.
Thank you for your assistance.
********************************************************************
---------------------------------------------------------------------------
*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies
that are enforced to protect WLANs from known vulnerabilities and threats.
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.
To get your FREE white paper visit us at:
http://www.securityfocus.com/AirDefense-pen-test
----------------------------------------------------------------------------
- Previous message: opus: "Re: pix log analyser"
- Maybe in reply to: haikel: "pix log analyser"
- Next in thread: Haebler, Marcus (Marcus): "RE: pix log analyser"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
