Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Statistics for Firewalls

From: "S. Jonah Pressman" <jpressman () sympatico ca>
Date: Tue, 10 Sep 2002 14:30:52 -0400
Danny:
Joe's answer is by far the best one so far. MRTG is a great tool and can be snagged from http://people.ee.ethz.ch/~oetiker/webtools/mrtg/mrtg.html
Protocol, bandwidth, and load statistics are best taken from a spanning port at the switch as Joe suggests. If, however, your boss wants summary and statistics of intrusion attempts thwarted by the firewall, a good home grown PERL script will do you fine. If you get weak at the knees just thinking about writing your own tools, a number of log file manipulation tools are readily available. 

Regards,
Jonah

Joe Matusiewicz wrote:


At 09:01 AM 9/10/02, Sutantyo, Danny wrote:


Hi,
Has anybody done statistics from Cisco PIX firewall or CheckPoint FW-1
firewall?

My boss wants to have a report every week something like a graph that
contains protocol, bandwidth, load, etc...
Your best bet is to probably use free network monitoring software like ntop or iptraf on a linux box off a spanning port on your switch. Ntop (and MRTG which uses snmp) will give you pretty graphs. You'll get the protocol, packet size, and bandwidth statistics you're looking for. 

Hope this helps....


-- Joe

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards





_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: