you could easily use WebTrends� reporting tool and Syslog server logging facility check out:
http://www.webtrends.com/products/firewall/default.htm Shay Hugi Mpthrill.com \ Golden-Channels, Systems Engineer. > > Message: 11 > Subject: A little off topic, Syslog servers. > Date: Wed, 22 May 2002 16:15:49 +0100 > From: "Matthew Macaulay" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > > This is a multi-part message in MIME format. > > ------_=_NextPart_001_01C201A3.8E0C7BB8 > Content-Type: text/plain; > charset="iso-8859-1" > Content-Transfer-Encoding: quoted-printable > > Hi all, > =20 > I hope this is not too far off firewall topic I apologise if it is. > =20 > I have been asked to implement a syslog server based on NT (W2K) . I = > need to collect the logs from a PIX firewall and a Nokia VPN device. > =20 > I have tried a few log server servers namely Kiwi, winsyslog and some = > others. I am able to collect the logs no problem and am happy to review = > the logs and act accordingly. > =20 > What my employer wants are summery reports for these devices, while = > there are tools which will report on the logs of a PIX firewall they = > cannot make head nor tail of the Nokia device (understandable). > =20 > So I guess what I am asking is, what do you guys use to help analyse = > your Firewall logs, I expect you guys can point me in the direction of = > web sites and further reading. > =20 > Any assistance is welcomed. > =20 > Regards, > =20 > Matthew MacAulay=20 > Raymarine LTD.=20 > =20 > > ------_=_NextPart_001_01C201A3.8E0C7BB8 > Content-Type: text/html; > charset="iso-8859-1" > Content-Transfer-Encoding: quoted-printable > > <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> > <HTML><HEAD> > <META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = > charset=3Diso-8859-1"> > > > <META content=3D"MSHTML 6.00.2716.2200" name=3DGENERATOR></HEAD> > <BODY> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial size=3D2>Hi=20 > all,</FONT></SPAN></DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial=20 > size=3D2></FONT></SPAN> </DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial size=3D2>I hope = > this is not=20 > too far off firewall topic I apologise if it = > is.</FONT></SPAN></DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial=20 > size=3D2></FONT></SPAN> </DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial size=3D2>I have = > been asked to=20 > implement a syslog server based on NT (W2K) . I need to collect the logs = > from a=20 > PIX firewall and a Nokia VPN device.</FONT></SPAN></DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial=20 > size=3D2></FONT></SPAN> </DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial size=3D2>I have = > tried a few=20 > log server servers namely Kiwi, winsyslog and some others. I am able to = > collect=20 > the logs no problem and am happy to review the logs and act=20 > accordingly.</FONT></SPAN></DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial=20 > size=3D2></FONT></SPAN> </DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial size=3D2>What = > my employer=20 > wants are summery reports for these devices, while there are tools = > which=20 > will report on the logs of a PIX firewall they cannot make head nor = > tail of=20 > the Nokia device (understandable).</FONT></SPAN></DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial=20 > size=3D2></FONT></SPAN> </DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial size=3D2>So I = > guess=20 > what I am asking is, what do you guys use to help analyse your = > Firewall=20 > logs, I expect you guys can point me in the direction of web = > sites=20 > and further reading.</FONT></SPAN></DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial=20 > size=3D2></FONT></SPAN> </DIV> > <DIV><SPAN class=3D375235114-22052002><FONT face=3DArial size=3D2>Any = > assistance is=20 > welcomed.</FONT></SPAN></DIV> > <DIV><SPAN class=3D375235114-22052002></SPAN><FONT face=3DArial=20 > size=3D2></FONT> </DIV> > <DIV><FONT face=3DArial size=3D2><SPAN=20 > class=3D375235114-22052002>Regards,</SPAN></FONT></DIV> > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > <DIV><FONT face=3DArial size=3D2>Matthew MacAulay</FONT> <BR><FONT = > face=3DArial=20 > size=3D2> Raymarine LTD.</FONT> </DIV> > <DIV><FONT face=3DArial size=3D2></FONT> </DIV></BODY></HTML> > > ------_=_NextPart_001_01C201A3.8E0C7BB8-- > > > --__--__-- > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > For Account Management (unsubscribe, get/change password, etc) Please go to: > http://lists.gnac.net/mailman/listinfo/firewalls > > > End of Firewalls Digest > _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] For Account Management (unsubscribe, get/change password, etc) Please go to: http://lists.gnac.net/mailman/listinfo/firewalls
