Analysis Tools for Firewall Logfiles

For the Record

Author(s):

Netfilter firewalls create highly detailed logfiles that nobody really wants to inspectmanually. Logfile analysis tools like IPtables Log Analyzer,Wallfire Wflogs,and FWlogwatch help administrators keep track of developments and filter for importantmessages.

In a firewall-protected environment, the administrator must keep track of developments by logging as many transactions as possible. At the same time, admins want to avoid wading through megabytes of logfiles just because they are worried about missing a clue. Logfile Helpers Protocal analysis tools provide a solution to this dilemma. Linux users have many options for firewall analysis programs. In this article, we’ll look at three alterna-tives: IPtables Log Analyzer [1], WFlogs from the Wallfire project [2], and FWlogwatch [3]. All three programs support a wide range of protocol formats and serve up the results as neatly formatted HTML pages; WFlogs and FWlogwatch additionally have realtime modes. IPtables Log Analyzer is the only tool to use a database for message storage.

Read full article as PDF:

Firewall_Logfile_Analyzers.pdf (314.56 kB)

Related content

  • Firewalls Intro

    Firewalls are becoming evermore sophisticated. Luckily, the tools for managing firewalls are becoming simpler and more accessible for ordinary users

  • KTools: KMyFirewall

    Linux has a fantastic selection of firewalls for securing stand-alone computers or whole networks. Although you can use IPTables to set up a firewall, the configuration is often the most difficult step. KMyFirewall offers a powerful, user-friendly, GUI-based approach.

  • Singwall

    We’ll show you how to build your own Netfilter extension with this example of a musical firewall.

  • Netfilter's Recent Module

    Netfilter’s Recent module builds a temporary blacklist to keep intruders off your network.

  • Brave GNU World

    This column looks into projects and current affairs in the world of free software. This month we focus on better security with Firestarter, a tool that helps you set up a firewall. We also look at a distributed computing project for animation or visualization.

comments powered by Disqus

Direct Download

Read full article as PDF:

Firewall_Logfile_Analyzers.pdf (314.56 kB)

News

njobs Europe
What:
Where:
Country:
Njobs Netherlands Njobs Deutschland Njobs United Kingdom Njobs Italia Njobs France Njobs Espana Njobs Poland
Njobs Austria Njobs Denmark Njobs Belgium Njobs Czech Republic Njobs Mexico Njobs India Njobs Colombia