[FW-1] Firewall Logs

Subject:	[FW-1] Firewall Logs - Processing
From:	"O'Flynn, Derek" <DOFlyn AT LSUHSC DOT EDU>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Fri, 26 Mar 2004 13:56:20 -0600

I would like a program that can read the firewall1 logs and then format
condense reports such as.



SMTP attempts from Inside hosts that aren't approved mail servers. (mail
virus infections)

Blaster attempts from inside hosts (infected laptops from home)

And can be customized to check the logs for specific events, or anomalies
(next virus of tomorrow)



Products that do this?  Open source? Home grown code also welcome.



Thanks,



Derek O'Flynn

LSU Health Sciences Center

Enterprise Information Security

(504) 568-6130  doflyn AT lsuhsc DOT edu




=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] Firewall Logs - Processing, O'Flynn, Derek <=

Previous by Date:	[FW-1] Problem with https from and external defined network to an internal host, Michael Guyear
Next by Date:	[FW-1] Nat Error !!!, Ivan Rodriguez Aguilar - CNDI
Previous by Thread:	[FW-1] Problem with https from and external defined network to an internal host, Michael Guyear
Next by Thread:	Re: [FW-1] RE : [FW-1] Problems with DMZ network with NG AI R54!, Juan Bautista Carcavallo
Indexes:	[Date] [Thread] [Top] [All Lists]

[FW-1] Firewall Logs - Processing