> Actually, there is no "LMS 2.4"...the version that includes RME 3.5 is LMS 2.2. yes I know, this is a typing mistake :) Tks for the answer, I think this is a big problem for us, because many of our customers have Cat500 and we use LMS to manage and monitor the devices. The CNA supports up to 40 devices in last release, not too much, and is only for win2k, not for Solaris. Tks again Giovanni Mellini ... View more

The paper focus on router logs, and I'm interested in PIX logs, but there is some useful information. Also if I have found a good graphical analyzer (fwanalog), I started to write a shell-based pix log analyzer today. The primary intent of this analyzer is to help me for a more accurated tuning of ACL in my PIX, according to http://www.cisco.com/en/US/partner/products/sw/iosswrel/ps1830/products_feature_guide_chapter09186a00800881c0.html and then prevent false positives that can occour. The report generated must take information about attack only logs, and then generate some stats (eg. source and dest ip, source and dest interface...), so I can create a more accurated ACL on my signature. I'll post some news about. Tks ... View more

I have configured the logging facielities of PIX Firewall so the firewall can write log messages (alarms and info) om my Slack10.1 server usins linux syslog. Yesterday I tryed an open source log analyzer, fwanalog, it seems to be a good choice. If someone else is interested in http://tud.at/programm/fwanalog/ Tks for the answer Giovanni ... View more