I gather about 800MB of log data each day from 12 firewall clusters
positioned around the world. I'd like to get a better handle on what's
happening from a 10,000 foot view. In the past, at a smaller company,
I've exported the log file and imported into SQL and then had 4 specific
queries run. I had very good luck with that process but the logs were
considerably smaller than what I manage today. I know from past
experience that there are a lot of things that could be fixed with this
sort of review. Should I stick with the SQL database or has anyone had
luck with SmartView Reporter. Are there other comparable products out
there?
My hopes are that I'll be able to dramatically reduce the size of the log
files by correcting the problems. I also realize that a policy of "log
everything" is not always the best policy. I would also welcome
suggestions in that area.
Thanks,
Brian
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
