08-14-2008 10:16 AM - edited 03-11-2019 06:31 AM
My apologies if this is off-topic for this forum. Our f/w is a 515e and it logs to a syslog server. My question for the group is do you know or use any kind of web reporting software?
We had an issue just recently where a laptop was severely infected with malware. The director wanted to know where the user had been as the history had been erased. I can use the logs produced by the Pix but as you know they can be a pain to compile into a report for a non-techie.
Thanks.
08-14-2008 11:38 AM
Do you want a syslog analysis tool for the PIX or for your AAA Server? If PIX (please see below) and if AAA/ACS have a look at 'extraxi'. They are a Cisco partner and they do a great job with ACS reporting.
This is from an older post:
Have you looked at Cisco MARS? (Its actaully a SEM)
http://www.cisco.com/en/US/products/ps6241/products_data_sheets_list.html
http://www.sawmill.net/features.html
(Found it to be pretty nice)
If you want a real-time (bandwith monitoring tool, fireplotter is pretty cool:
Alternates:
http://manageengine.adventnet.com/products/firewall/
(never tried it tough)
http://www.eventid.net/firegen/firegenpix2.asp
(had serious performance issues)
Some more:
http://www.windowsecurity.com/software/Firewall-security-log-analyzers/
Please rate if helpful
Regards
Farrukh
08-15-2008 06:58 AM
Thanks a lot, Farrukh! Very helpful and rated as such.
08-15-2008 08:51 AM
No problem, glad I could help :)
Can't see the rating tough :)
Regards
Farrukh
08-15-2008 08:58 AM
Should be there now (think I forgot to hit the Submit button).
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: