https://community.cisco.com/t5/network-security/analysis-of-logs/m-p/1131273#M896778 <HTML><HEAD></HEAD><BODY><P>Hi Sushil,</P><P></P><P>Thanks for ur support, currently i dont have perl S/W with me. i will try with sawmill.</P><P></P><P>Thanks a lot</P></BODY></HTML> Wed, 10 Sep 2008 08:44:06 GMT CSCO10905906 2008-09-10T08:44:06Z https://community.cisco.com/t5/network-security/analysis-of-logs/m-p/1131271#M896774 <P>Please suggest any free tool which can automatically analyse the logs from the firewall, collected in kiwi syslog server.</P><P>reagrds, Naveen.</P> Mon, 11 Mar 2019 13:40:44 GMT https://community.cisco.com/t5/network-security/analysis-of-logs/m-p/1131271#M896774 CSCO10905906 2019-03-11T13:40:44Z https://community.cisco.com/t5/network-security/analysis-of-logs/m-p/1131272#M896776 <HTML><HEAD></HEAD><BODY><P>Syslog server could be:</P><P>- Kiwi Syslog:</P><P><A class="jive-link-custom" href="http://www.kiwisyslog.com/" target="_blank">http://www.kiwisyslog.com/</A></P><P>- 30COM Deamon</P><P><A class="jive-link-custom" href="http://www.ncat.co.uk/Download/" target="_blank">http://www.ncat.co.uk/Download/</A></P><P>- There is also a Cisco Syslog Server which supports TCP Syslog 514 - pfss512.exe</P><P><A class="jive-link-custom" href="http://www.cisco.com/cgi-bin/tablebuild.pl/pix?sort=release" target="_blank">http://www.cisco.com/cgi-bin/tablebuild.pl/pix?sort=release</A></P><P></P><P>Commercial products that creates graphs and analyzes Syslog to generate stats could be:</P><P>- FireGen <A class="jive-link-custom" href="http://www.eventid.net/firegen/" target="_blank">http://www.eventid.net/firegen/</A></P><P>- Try this one FWLOGSUM (Freeware).</P><P><A class="jive-link-custom" href="http://www.ginini.com/software/fwlogsum/" target="_blank">http://www.ginini.com/software/fwlogsum/</A></P><P><A class="jive-link-custom" href="http://www.ginini.com/software/fwlogsum/converters/" target="_blank">http://www.ginini.com/software/fwlogsum/converters/</A></P><P>It uses basicly PERL scripts and supports a wide range of Firewalls. You just need to install Perl in your Windows environment.</P><P>- Try Sawmill (Eval version)</P><P><A class="jive-link-custom" href="http://www.sawmill.net/" target="_blank">http://www.sawmill.net/</A></P><P>- EIQ Networks Network Security Analyzer eiqnetworks.com</P><P></P><P>Hope that gives you some ideas what to try.</P><P></P><P></P><P>Regards,</P><P>Sushil</P></BODY></HTML> Mon, 08 Sep 2008 14:49:40 GMT https://community.cisco.com/t5/network-security/analysis-of-logs/m-p/1131272#M896776 suschoud 2008-09-08T14:49:40Z https://community.cisco.com/t5/network-security/analysis-of-logs/m-p/1131273#M896778 <HTML><HEAD></HEAD><BODY><P>Hi Sushil,</P><P></P><P>Thanks for ur support, currently i dont have perl S/W with me. i will try with sawmill.</P><P></P><P>Thanks a lot</P></BODY></HTML> Wed, 10 Sep 2008 08:44:06 GMT https://community.cisco.com/t5/network-security/analysis-of-logs/m-p/1131273#M896778 CSCO10905906 2008-09-10T08:44:06Z