Firewall Wizards mailing list archives

Re: Firewall Log Analysis

From: "Saravana Ram" <Ram () POP Jaring My>
Date: Fri, 14 Jan 2000 20:54:19 +0800

To get the log files, I propose to regularly FTP the files (in zipped

version,

once a day, automatically)from the firewalls to a centralised machine.

This

machine run a log anaysis software.  The report may be FTP'ed back or put

up on

a website.

1) Are there any better approaches to do this?


Do make sure that the firewalls ftp OUT the log files to your central
machine. Don't run ftpd (or any) services on your firewalls. FTP itself is
insecure, try to use ssh's file transfer mechanism instead, or any other
means of secure file transfer.

Current thread:

Firewall Log Analysis VN_Sabarinath (Jan 13)
- Re: Firewall Log Analysis Saravana Ram (Jan 15)
- Re: Firewall Log Analysis Bill Pennington (Jan 16)
- Re: Firewall Log Analysis R. DuFresne (Jan 16)
  - Re: Firewall Log Analysis Randy Grimshaw (Jan 18)
- Re: Firewall Log Analysis Chuck Swiger (Jan 16)