Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
281
Views
0
Helpful
1
Replies

Solutions for FW Log Archiving?

edardet
Level 1
Level 1

‎02-22-2005 06:37 AM - edited ‎03-09-2019 10:25 AM

We would like to retain fw logs for forensyc and audit use. Any good solutions for a syslog server with some decent archiving/compressing of logs and search functionality?

Labels:
0 Helpful
1 Reply 1

bryan.green
Level 1
Level 1

‎02-22-2005 09:49 AM

We collect ~6GB a day from 3 firewalls with informational logging via syslog. The current environment, which we are still testing, is a 1TB server with Kiwi Syslog daemon into a MS SQL database. This is relatively easy and can be setup with little time.

The challenge is setting up the frontend, we have basically taken PhpSyslogNG which is an open source GPL licensed product and used that template to create our own custom front end on a .NET platform. The result is a completely searchable database for all syslog messages that can be sorted/searched via any field (date, logging level, device, etc).

Hope this helps, here are some links for ya..

http://www.vermeer.org/projects/php-syslog-ng

http://www.kiwisyslog.com/info_syslog.htm

0 Helpful
Customers Also Viewed These Support Documents