Re: Firewall Log Analysis

["Bill Pennington" <billp () rocketcash com>]

I might just suggest you use ssh (scp actually) to move the logs around. It
is encrypted and a little more secure than plain ole ftp. You don't mention
what type of firewall you are running so it is difficult to discuss
particulars.

Bill


----- Original Message -----
From: <VN_Sabarinath () satyam-infoway com>
To: <firewall-wizards () nfr net>
Sent: Wednesday, January 12, 2000 9:05 PM
Subject: Firewall Log Analysis


>                                               Placed At :
>
>
> Hello,
>
> I administer 5 remote firewalls and wish to do seperate centralized
anaysis of
> the logfiles to generate custom reports.
>
> To get the log files, I propose to regularly FTP the files (in zipped
version,
> once a day, automatically)from the firewalls to a centralised machine.
This
> machine run a log anaysis software.  The report may be FTP'ed back or put
up on
> a website.
>
> 1) Are there any better approaches to do this?
>
> 2) We currently use Webtrends for firewalls and VPN's.  Is there an
unlimited
> license version for this product? (We are an ISP).
>
> 3) Can you suggest other log analysis software?
>
> Thanks/Regards
>
> VN Sabarinath
>
>
> Please Visit http://www.satyamonline.com for free e-mail