| Advantage of analyzing Firewall logs:
|
Firewall logs reveal a lot of information on the nature of traffic coming in and going out of the firewall, allows you to plan your bandwidth requirement based on the bandwidth usage accross the firewalls. Analyzing these firewall traffic logs is vital to understand network and bandwidth usage and plays an important role in business risk assessment.
| Analyzed Firewall Log Reports: FireWall Logs/6.Secui.com
|
Secui.com Firewall Log Analysis..
Reporting of Secui.com NXG (Next Generation Gateway) Firewall's..
LogQuest VF can verify, analyze and generate report for Check Point NXG Firewall logs. You need to collect Check Point NXG firewall logs and then verify in LogQuest VF.
Report based on the file: FireWall Logs/6.Secui.com/NXG/WELF/NXG_20040511.log
Pre-defined Log Format: Standard Log/WELF Format
Date report was created:12th October 2007
a)Report Conditions are:
Condition(1)=Data: 192.168.104.151, Column: src,Logic: Contain,Rule:Count,Mode: Single
Condition(2)=Data: *,Column: proto,Logic: Contain,Rule: Count,Mode: Single
Condition(3)=Data: *,Column: msg,Logic: Contain,Rule: Count,Mode: Single
Report
|
|
b)Report Conditions are:
Condition(1)=Data: *,Column: src,Logic: Contain,Rule: Count, Mode: Single
Condition(2)=Data: firewall,Column: id,Logic: Contain,Rule: Count,Mode: Single
Condition(3)=Data: *,Column: msg, Logic: Contain,Rule: Count,Mode: Single
Report
Report
|
|
c)Report Conditions are:
Condition(1)=Data: *,Column: dst,Logic: Contain,Rule: Count,Mode: Single
Condition(2)=Data: *,Column: msg,Logic: Contain,
Rule: Count,Mode: Single
Condition(3)=Data: ,Column: pri, Logic: Contain,Rule: Total Sum, Mode: Single
Condition(4)=Data: , Column: rule,Logic: Contain,Rule: Total Sum,Mode: Single
Report
|
|
| Analyzed Firewall Log Reports: FireWall Logs/2.CheckPoint
|
Check Point Firewall Log Analysis..
Reporting For Check Point Firewall's..
LogQuest VF can verify, analyze and generate report for Check Point Firewall logs. You need to collect Check Point firewall logs and then verify in LogQuest VF.
Report based on the file: FireWall Logs/2.CheckPoint/CheckpointFW-1-Using-OPSEC-LEA_WELF_Unknown__4Oct2004.log
Pre-defined Log Format: Standard Log/WELF Format
Date report was created:15th October 2007
a)Report Conditions are:
Condition(1)=Data: *, Column: src,Logic: Contain,Rule:Count,Mode: Single
Condition(2)=Data: tcp, Column: proto, Logic: Contain, Rule: Count, Mode: Single
Condition(3)= Data: 16,Column: rule,Logic: Contain,Rule: Count,Mode: Single
Report
|
|
b)Report Conditions are:
Condition(1)=Data: *,Column: dst,Logic: Contain,Rule: Count,Mode:Single
Condition(2)=Data: tcp,Column: proto,Logic: Contain,Rule: Count,Mode:Single
Condition(3)=Data: 16,Column: rule,Logic: Contain,Rule: Count,Mode:Single
Report
|
|
c)Report Conditions are:
Condition(1)=Data: *,Column: src,Logic: Contain,Rule: Count,Mode: Single
Condition(2)=Data: product=VPN-1,Column: __policy_id_tag, Logic: Contain,Rule: Count,Mode: Single
Condition(3)=Data:{6C95C9C6-C04D-4A4F-AF51-4CA423180B83};mgmt=fwmgmt;date=1095672275;policy_name=New_ifw_rules_2004-07_07],Column: FireWall-1[db_tag,Logic: Contain,Rule: Count,Mode: Single
Condition(4)=Data: TCP-8080,Column: service,Logic: Contain,Rule: Count,Mode: Single
Report
|
|
d)Report Conditions are:
Condition(1)=Data: *,Column: src,Logic: Contain,Rule: Count,Mode: Single
Condition(2)=Data: accept,Column: action,Logic: Contain,Rule: Count,Mode: Single
Condition(3)=Data: product=VPN-1,Column: _policy_id_tag,Logic: Contain,Rule: Count,Mode: Single
Condition(4)=Data: ,Column: rule,Logic: Contain,Rule: Total Sum,Mode: Single
Report 1
|
|
Report 2
|
|
|
Innerbus Company Limited,
