nanog mailing list archives
Re: ASA log viewer
From: Duane Toler <detoler () gmail com>
Date: Sat, 19 Nov 2011 20:32:15 -0500
On Sat, Nov 19, 2011 at 20:04, Jay Ashworth <jra () baylink com> wrote:
----- Original Message -----From: "Duane Toler" <detoler () gmail com>My employer is deploying CIsco ASA firewalls to our clients (specifically the 5505, 5510 for our smaller clients). We are having problems finding a decent log viewer. Several products seem to mean well, but they all fall short for various reasons. We primarily use Check Point firewalls, and for those of you with that experience, you know the SmartViewer Tracker is quite powerful. Is there anything close to the flexibility and filtering capabilities of Check Point's SmartView Tracker?Is your problem the aggregation proper, or the mining? Do the ASA's log to syslog? Cheers, -- jra --
Yep, we log to syslog, and the issue is the mining. Not that I/we *can't* grep/regex/sed/awk/perl our way thru the log files. It's just that it's overly tedious. Especially when compared to Check Point's product (given that they are aiming to compete...).
Current thread:
- ASA log viewer Duane Toler (Nov 19)
- Re: ASA log viewer Jay Ashworth (Nov 19)
- Re: ASA log viewer Duane Toler (Nov 19)
- Re: ASA log viewer Jonathan Lassoff (Nov 19)
- Re: ASA log viewer Duane Toler (Nov 19)
- Re: ASA log viewer Mike Lyon (Nov 19)
- Re: ASA log viewer Beavis (Nov 19)
- Re: ASA log viewer Jonathan Lassoff (Nov 19)
- Re: ASA log viewer Duane Toler (Nov 19)
- Re: ASA log viewer Jonathan Lassoff (Nov 19)
- Re: ASA log viewer Duane Toler (Nov 19)
- Re: ASA log viewer Duane Toler (Nov 19)
- Re: ASA log viewer Jay Ashworth (Nov 19)
- <Possible follow-ups>
- Re: ASA log viewer Joel M Snyder (Nov 19)
- RE: ASA log viewer Joe Happe (Nov 20)
- RE: ASA log viewer jjanusze () wd-tek com (Nov 20)
- RE: ASA log viewer Joe Happe (Nov 20)