Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1890
  • Last Modified:

Log Analyzer for Cisco PIX/ASA?

Hi.  I would like know what are the log analyzers out there for collecting and analyzing logs from Cisco PIX/ASA, or Cisco Routers?  ANy suggestions?
0
hoggiee
Asked:
hoggiee
  • 3
  • 2
  • 2
  • +2
4 Solutions
 
rsivanandanCommented:
For free, I'll add this;

Kiwi syslog (google it and you'll get it)

Cheers,
Rajesh
0
 
The_KirschiCommented:
http://www.cisco.com/en/US/products/ps6241/products_data_sheet0900aecd80272e64.html

Not cheap but nice tool. If you want to use it depends on the size of your environment I think.
0
Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
Tim HolmanCommented:
Sawmill is quite good too:

http://www.thesawmill.co.uk

Or Kiwi -

http://www.kiwisyslog.com

How many Cisco devices do you have?  If you have a lot, then something more enterprise oriented (www.eiqnetworks.com) would be more suitable.
0
 
hoggieeAuthor Commented:
I intend to collect logs from 5 Cisco ASA and 1 Cisco router.  I need something that can offer detailed analysis of logs and report generation e.g. all incoming and outgoing traffic, all blocked traffic, attempted access blocked by the device, etc.  Therefore, I do not think kiwi syslog is a good option.
0
 
hoggieeAuthor Commented:
and not to be left out, alerts and notification of any failed events.....
0
 
The_KirschiCommented:
So I think my suggestion would fit into your environment.
0
 
rsivanandanCommented:
Have you looked at AdventNet stuff which works on SNMP and also is free for 5 devices.

http://www.adventnet.com/products/webnms/index.html

Cheers,
Rajesh
0
 
Tim HolmanCommented:
Do you have a budget, or are you after freeware?
0
 
hoggieeAuthor Commented:
Have tried out a few of them, and found out in the end that EIQ's Network Security Analyzer seems the most appropriate solution to my environment.  By the way, I have also found out that Sawmill doest not offer a syslog server to capture the syslogs from my Cisco devices.
0
 
Keith AlabasterEnterprise ArchitectCommented:
:)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

  • 3
  • 2
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now