Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [OT?] Accounting from PIX Logs

From: "Security Guy" <security () sligoinc com>
Date: Wed, 28 Mar 2007 08:42:46 -0400
This perl script might help you:

http://groups.google.ca/group/comp.dcom.sys.cisco/browse_thread/thread/972a527ba458f06/37ddb0b6234c1e48#37ddb0b6234c1e48

another option (also discussed in that thread) would be to mirror the
inside port of the PIX and run traffic analysis against that (there
are numerous apps that will do this for you, I just can't think of any
off the top of my head), but this would require a switch that supports
mirroring and another box to do the analysis. More complicated, but
you're probably going to get a more accurate reading than groking what
you get from the PIX syslog output

HTH

-Karl

On 3/27/07, Adrian Grigorof <adi () grigorof com> wrote:


 Hello,

 Not open source but good (we hope):
http://www.eventid.net/firegen/firegenpix2.asp (I am one of
the developers).

 Regards,

Adrian Grigorof
www.altairtech.ca
www.eventid.net



 fRANz wrote:
 Hi.
Anyone can suggest me a good solution (preferred OpenSource) for
summarizing and accounting Cisco PIX (ver. 6.x, 7.x) logs?

Regards,
-f
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards





_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards





-- 
-Karl
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: