Hi there.
I come from the Checkpoint Firewall-1 land where there's a tool called CheckPoint Log Viewer where you can watch,storage,export,query,make filters to the logs generated by CheckPoint Firewalls.
However, due to some issues related to Checkpoint we had to move to Cisco FWSM.Now I am facing this problem which is that i can't do all the analysis/tasks i used to do in CheckPoint Log Viewer with the tool that Cisco offers for logging: Syslog
Can anyone recommend any free/not free tool that has those facilities.
I've tested Cisco Security Monitor 2.0 but it's a web+java based interface and it basically shows events categorized in customized views (deny inbound connections,no xlates,summary) and severy levels.
What about netforensics?
I'm not asking for a CheckPoint Log Viewer look alike tool, i am asking for a tool with decent log features.
Thanks
Xpid
I come from the Checkpoint Firewall-1 land where there's a tool called CheckPoint Log Viewer where you can watch,storage,export,query,make filters to the logs generated by CheckPoint Firewalls.
However, due to some issues related to Checkpoint we had to move to Cisco FWSM.Now I am facing this problem which is that i can't do all the analysis/tasks i used to do in CheckPoint Log Viewer with the tool that Cisco offers for logging: Syslog
Can anyone recommend any free/not free tool that has those facilities.
I've tested Cisco Security Monitor 2.0 but it's a web+java based interface and it basically shows events categorized in customized views (deny inbound connections,no xlates,summary) and severy levels.
What about netforensics?
I'm not asking for a CheckPoint Log Viewer look alike tool, i am asking for a tool with decent log features.
Thanks
Xpid