Solved

Cisco ASA 5520 - FW log analyzer

Posted on 2009-07-07
3
1,784 Views
Last Modified: 2013-11-16
There are millians of lines of log report getting from FW on every hour. Is there any tool to analyze the log pattern and give us the details of each level ( info to emergency level ? )

Recommend to have Open source if not, commercial is okey?
0
Comment
Question by:Sriram_pp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 23

Accepted Solution

by:
debuggerau earned 125 total points
ID: 24800840
the logs should contain those levels already, if you want them broken up and grouped, might be better to do that on the ASA as you can have multiple alert sets.

But as far as third party solutions:
http://syslog-archiving.qarchive.org/
0
 
LVL 34

Assisted Solution

by:Istvan Kalmar
Istvan Kalmar earned 125 total points
ID: 24801899
Hi,

I use AdventNet Manege Engine Firewall Analyzer, it has a grapical interface, very useful program!
It saves the logs into SQL database!

http://www.manageengine.com/products/firewall/download.html
0
 

Author Closing Comment

by:Sriram_pp
ID: 31600967
Both the tools are most useful
0

Featured Post

IoT Devices - Fast, Cheap or Secure…Pick Two

The IoT market is growing at a rapid pace and manufacturers are under pressure to quickly provide new products. Can you be sure that your devices do what they're supposed to do, while still being secure?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question