Spotlight | Reviews | Current Issue | Newsletter | Subscribe | Contact |
News
Features
Blogs
RSS Feeds
White Papers
Conference Videos
Departments
Current Issue
Special Editions
Spotlight
Reviews
LUGs
Event Calendar
Archives
     2009
     2008
     2007
     2006
     2005
Article Code

user friendly

  linux-magazine.com » Issues » 2005 » 50 » For the Record  

Print this page. Recommend
Slashdot it! Delicious Digg

Analysis Tools for Firewall Logfiles

For the Record

Author(s): RALF SPENNEBERG

Netfilter firewalls create highly detailed logfiles that nobody really wants to inspectmanually. Logfile analysis tools like IPtables Log Analyzer,Wallfire Wflogs,and FWlogwatch help administrators keep track of developments and filter for importantmessages.

In a firewall-protected environment, the administrator must keep track of developments by logging as many transactions as possible. At the same time, admins want to avoid wading through megabytes of logfiles just because they are worried about missing a clue. Logfile Helpers Protocal analysis tools provide a solution to this dilemma. Linux users have many options for firewall analysis programs. In this article, we’ll look at three alterna-tives: IPtables Log Analyzer [1], WFlogs from the Wallfire project [2], and FWlogwatch [3]. All three programs support a wide range of protocol formats and serve up the results as neatly formatted HTML pages; WFlogs and FWlogwatch additionally have realtime modes. IPtables Log Analyzer is the only tool to use a database for message storage.


Read full article as PDF »


Comments


Print this page. Recommend
Slashdot it! Delicious Digg
Related Articles
The Drawbridge Implementing a bridging-level firewall
Setting the Table Configuring Netfilter/iptables with Shorewall
Not Just for Experts Firewalls for the everyday
ApacheCon US video archive

All about Apache in 19 talks

Watch 19 talks from the ApacheCon US in New Orleans from the convenience of your home or office. Topics are: Scaling Apache 2.x in all dimensions, Securing Communications with your Apache HTTP Server, Scripting your Java Application with BSF 3.0 and much more.

Find out more

 

In the US and Canada, Linux Magazine is known as Linux Pro Magazine.
Entire contents © 2009 [Linux New Media USA, LLC]
Linux New Media web sites:
North America: [Linux Pro Magazine]
UK/Worldwide: [Linux Magazine]
Germany: [Linux-Magazin] [LinuxUser] [EasyLinux] [Linux-Community] [Linux-Nachrichten] [Linux Events]
Eastern Europe: [Linux Magazine Poland] [Linux Community Poland] [Darmowe Programy Poland] [Open Source DVD Poland] [Linux Magazin Romania]
International: [Linux Magazine Brazil] [Linux Magazine Spanish]
Corporate: [Linux New Media AG]