Firewall Wizards mailing list archives
Re: Firewall Log Analysis
From: "Saravana Ram" <Ram () POP Jaring My>
Date: Fri, 14 Jan 2000 20:54:19 +0800
To get the log files, I propose to regularly FTP the files (in zipped
version,
once a day, automatically)from the firewalls to a centralised machine.
This
machine run a log anaysis software. The report may be FTP'ed back or put
up on
a website.
1) Are there any better approaches to do this?
Do make sure that the firewalls ftp OUT the log files to your central machine. Don't run ftpd (or any) services on your firewalls. FTP itself is insecure, try to use ssh's file transfer mechanism instead, or any other means of secure file transfer.
Current thread:
- Firewall Log Analysis VN_Sabarinath (Jan 13)
- Re: Firewall Log Analysis Saravana Ram (Jan 15)
- Re: Firewall Log Analysis Bill Pennington (Jan 16)
- Re: Firewall Log Analysis R. DuFresne (Jan 16)
- Re: Firewall Log Analysis Randy Grimshaw (Jan 18)
- Re: Firewall Log Analysis Chuck Swiger (Jan 16)