I would like to know how to monitor what is being denied and allowed through my PIX 501 firewall. I need to be more proactive about detecting network attacks and/or malicious activity hitting my network.
I have a PIX 501 firewall protecting a SBS 2003 server network.
I know enough about the PIX to get it configured and running with VPNs, basic access lists, and static statements, but that's about it.
Please help me understand how to monitor this device. I would like a solution that is manageable as I cannot dedicate my efforts to 24/7 network monitoring. I'm a one man shop.
Thanks in advance for your help!