08-14-2008 10:16 AM - edited 03-11-2019 06:31 AM
My apologies if this is off-topic for this forum. Our f/w is a 515e and it logs to a syslog server. My question for the group is do you know or use any kind of web reporting software?
We had an issue just recently where a laptop was severely infected with malware. The director wanted to know where the user had been as the history had been erased. I can use the logs produced by the Pix but as you know they can be a pain to compile into a report for a non-techie.
Thanks.
08-14-2008 11:38 AM
Do you want a syslog analysis tool for the PIX or for your AAA Server? If PIX (please see below) and if AAA/ACS have a look at 'extraxi'. They are a Cisco partner and they do a great job with ACS reporting.
This is from an older post:
Have you looked at Cisco MARS? (Its actaully a SEM)
http://www.cisco.com/en/US/products/ps6241/products_data_sheets_list.html
http://www.sawmill.net/features.html
(Found it to be pretty nice)
If you want a real-time (bandwith monitoring tool, fireplotter is pretty cool:
Alternates:
http://manageengine.adventnet.com/products/firewall/
(never tried it tough)
http://www.eventid.net/firegen/firegenpix2.asp
(had serious performance issues)
Some more:
http://www.windowsecurity.com/software/Firewall-security-log-analyzers/
Please rate if helpful
Regards
Farrukh
08-15-2008 06:58 AM
Thanks a lot, Farrukh! Very helpful and rated as such.
08-15-2008 08:51 AM
No problem, glad I could help :)
Can't see the rating tough :)
Regards
Farrukh
08-15-2008 08:58 AM
Should be there now (think I forgot to hit the Submit button).
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide