analysis of Logs

Unanswered Question
Sep 6th, 2008

Please suggest any free tool which can automatically analyse the logs from the firewall, collected in kiwi syslog server.

reagrds, Naveen.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
suschoud Mon, 09/08/2008 - 07:49

Syslog server could be:

- Kiwi Syslog:

http://www.kiwisyslog.com/

- 30COM Deamon

http://www.ncat.co.uk/Download/

- There is also a Cisco Syslog Server which supports TCP Syslog 514 - pfss512.exe

http://www.cisco.com/cgi-bin/tablebuild.pl/pix?sort=release

Commercial products that creates graphs and analyzes Syslog to generate stats could be:

- FireGen http://www.eventid.net/firegen/

- Try this one FWLOGSUM (Freeware).

http://www.ginini.com/software/fwlogsum/

http://www.ginini.com/software/fwlogsum/converters/

It uses basicly PERL scripts and supports a wide range of Firewalls. You just need to install Perl in your Windows environment.

- Try Sawmill (Eval version)

http://www.sawmill.net/

- EIQ Networks Network Security Analyzer eiqnetworks.com

Hope that gives you some ideas what to try.

Regards,

Sushil

Naveen kumar Wed, 09/10/2008 - 01:44

Hi Sushil,

Thanks for ur support, currently i dont have perl S/W with me. i will try with sawmill.

Thanks a lot

Actions

This Discussion