Firewall Wizards mailing list archives
Re: Reporting Server
From: "Richard Golodner" <rgolodner () infratection com>
Date: Wed, 18 Apr 2007 01:52:42 -0400
All of the products mentioned below work well. I like Kiwi as I like to collect a very large amount of data and analyze as I need and or want. The buffering feature is great in KiwiSyslogD. This is a real world, under extreme load, tested product and I stand by it. I work for myself. Just my experience. Richard -----Original Message----- From: firewall-wizards-bounces () listserv cybertrust com [mailto:firewall-wizards-bounces () listserv cybertrust com] On Behalf Of Daniel Salinas Sent: Tuesday, April 17, 2007 2:10 PM To: dave () corecom com; 'Firewall Wizards Security Mailing List' Subject: Re: [fw-wiz] Reporting Server I run the software version of the PrivateEye product line. http://www.rsa.com/node.aspx?id=3170 The software version has a maximum number of messages per second that it can handle. I understand that the company currently recommends and sells only the chassis version which runs on a hardened linux kernel. The product has been great and stable and support has been good when I have needed it. Daniel Salinas Network Specialist Harlingen C.I.S.D. salinasd () harlingen isd tenet edu -----Original Message----- From: firewall-wizards-bounces () listserv cybertrust com [mailto:firewall-wizards-bounces () listserv cybertrust com] On Behalf Of Dave Piscitello Sent: Thursday, April 12, 2007 6:57 AM To: Firewall Wizards Security Mailing List Subject: Re: [fw-wiz] Reporting Server I have kiwi in my office and have installed it for local SMBs (15-25 clients, firewall, 1-2 servers). These are both Windows monocultures and we used spare PCs running XP. It is pretty good. We paid for the full version in one location so we could write logs to the NT application event log. The paid version is also useful because it buffers messages under heavy load. kevin horvath wrote:
for a syslog daemon kiwi is pretty good for filtering traffic. For running reports you can try cacti or mrtg. On 4/5/07, *Eric Anderson* < strasser () etronics-online com <mailto:strasser () etronics-online com>> wrote: Hello everyone, I'm interested in what other admins are using for a reporting server for syslog analysis. I've an Open SUSE 10.2 syslog server receiving
packets
from a PIX 515E and I want to run reports on IP traffic. Can anyone recommend anything? Eric -- Atheism is a non-prophet organization. _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com <mailto:firewall-wizards () listserv icsalabs com> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards ------------------------------------------------------------------------ _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Reporting Server Eric Anderson (Apr 06)
- Re: Reporting Server John.Crissup (Apr 06)
- Re: Reporting Server kevin horvath (Apr 06)
- Re: Reporting Server Dave Piscitello (Apr 12)
- Re: Reporting Server Daniel Salinas (Apr 17)
- Re: Reporting Server Richard Golodner (Apr 18)
- Re: Reporting Server Dave Piscitello (Apr 12)
- Re: Reporting Server K K (Apr 09)
- Re: Reporting Server Linder, Erik (Apr 10)