RE: FW/IPS log correlation software

["Vijaya Baskar, A (TATA BP Solar)" <baskarva () e1577 b akamaiedge net>]

You can use SYMANTEC SECURITY INFORMATION MANAGER (SSIM).

Thanks,
A.Vijaya baskar

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Raimar Melchior
Sent: Thursday, April 03, 2008 7:09 PM
To: security-basics () securityfocus com
Subject: FW/IPS log correlation software

Hello list,

we want a central log station where logs from firewalls, ips and other 
security devices are sent to. All of our components support the syslog 
protocol.
The challange is to filter and correlate this huge amount of logs. We 
also want to create filtering and reports (graphical). The server should 
have a graphical frontend (gui).
We tried the kiwi syslog server but it doesn't meet our requirements. 
Any good enterprise software out there ?
Any suggestions would be very appreciated.

Many Thanks,
Raimar

Security Consultant

CROCODIAL IT Security GmbH

Niederlassung Köln
Von-der-Wettern-Str. 25
51149 Köln

office: +492203-69923-16
mobile: +49170-2265680
eMail: rm () crocodial de
http://www.crocodial.de/


Sitz der Gesellschaft: Hamburg
Eingetragen: Amtsgericht Hamburg Nr. HRB 83456
Geschäftsführung: Wolfgang Dierke, Helmut Hansen, Lutz Klöber

----------------------------------------------------------------------
CROCODIAL SecurityDays 2008:
----------------------------------------------------------------------
  Berlin:      16.04.2008          Hamburg:     22.02.2008
               26.09.2008                       05.09.2008
  Bremen:      04.04.2008          Hannover:    18.04.2008
               12.09.2008                       19.09.2008
  Dortmund:    23.10.2008          Köln:        05.06.2008
  Düsseldorf:  10.04.2008



-----------------------------------------
=======================================================================================================
DISCLAIMER:
This message contains information intended solely for the
addressee, which is confidential or private in nature and subject
to legal privilege. If you are not the intended recipient, you may
not peruse, use, disseminate, distribute or copy this message or
any file attached to this message. Any such unauthorised use, is
prohibited and may be unlawful. If you have received this message
in error, please notify it () tatabp com immediately  and thereafter
delete the original message from your system. Furthermore, the
information contained in this message, and any attachments thereto,
is for information purposes only and may contain the personal views
and opinions of the author, which are not necessarily the views and
opinions of Tata BP Solar India Limited. Tata BP Solar India
Limited therefore does not accept liability for any claims, loss or
damages of whatsoever nature, arising as a result of the reliance
on such information by anyone. All Tata BP Solar mails and
attachments are scanned for all known viruses & other malware at
the time of transmission. However, please scan the mail and
attachments for viruses & other malware before opening or
downloading from this transmission. We will not accept any
liability for damages through virus and/or other malware. Whilst
all reasonable steps are taken to ensure the accuracy and integrity
of information transmitted electronically and to preserve the
confidentiality thereof, Tata BP Solar India Limited accepts no
liability or responsibility whatsoever if information or data is,
for whatsoever reason, incorrect, corrupted or does not reach its
intended destination. 
========================================================================================================