?
Solved

Monitoring utilty for firewall/router logs

Posted on 2006-06-08
6
Medium Priority
?
299 Views
Last Modified: 2013-11-16
Hi, I am looking for a utility that will monitor firewall and router log activity with a gui dashboard type interface.   I would like to be able to view malicious connection activity as well as the ability to monitor end to end connections and activity such as dropped packets for certain flows.  Any suggestions or links would be appreciated.  

Thanks,
0
Comment
Question by:jfexchange
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 44

Expert Comment

by:zephyr_hex (Megan)
ID: 16865265
does your router/firewall not offer this?  what model of router/firewall do you have?
0
 

Author Comment

by:jfexchange
ID: 16865647
primarily cisco equiptment pix 501 , 515
0
 
LVL 12

Accepted Solution

by:
srikrishnak earned 500 total points
ID: 16866716
http://www.loganalysis.org/sections/parsing/application-specific/

I prefer analog for the great customization .
0
Need protection from advanced malware attacks?

Look no further than WatchGuard's Total Security Suite, providing defense in depth against today's most headlining attacks like Petya 2.0 and WannaCry. Keep your organization out of the news with protection from known and unknown threats.

 
LVL 32

Expert Comment

by:rsivanandan
ID: 16867266
You can also take a look at;

http://www.kiwisyslog.com/

They provide a free syslog utility and most of the people use that for syslog logging.

Cheers,
Rajesh
0
 

Author Comment

by:jfexchange
ID: 16869136
Thank you for the suggestions, I have used kiwi, I don't think it is user friendly enough, basically it seems like just a spread sheet of the events, I would really like something with a better gui, that can do charting and trneding as well.  I will have to take a look at analog, thank you for the suggestion sri.
0
 
LVL 1

Assisted Solution

by:jecks
jecks earned 500 total points
ID: 16906675
I use and enjoy this one.

http://www.newfreedownloads.com/Internet/Server-Tools/ManageEngine-Firewall-Analyzer.html


I find it user friendly and it gives me what I need without alot of hassle
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…
Suggested Courses
Course of the Month15 days, 11 hours left to enroll

741 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question