fwanalog
fwanalog is a shell script that parses and summarizes firewall logfiles. It understands logs from ipf (xBSD, Solaris), OpenBSD 3.x pf, Linux 2.2 ipchains, Linux 2.4 iptables, and a few types of routers and firewalls (Cisco, Checkpoint FW-1, and Watchguard). The excellent log analysis program Analog is used to create the reports.
| Tags | Internet Log Analysis Security Logging Networking Firewalls |
|---|---|
| Licenses | GPL |
| Operating Systems | POSIX |
| Implementation | Unix Shell |
Recent releases
- 18 Mar 2004 10:35
Changes: This release has further PIX fixes and a better error message if no input files are found.
- 25 Nov 2003 14:26
Changes: Additional fixes in Cisco PIX log processing.
- 17 Mar 2003 03:58
Changes: This release improves support for Cisco PIX firewall logs, including the access-list method. Support for Watchguard Firebox and Firewall-One logs was added, and there were some bugfixes in the error handling code.
- 08 Jan 2003 09:47
Changes: The default language file now matches the current version of Analog. Experimental support for Cisco PIX firewalls was added.
- 01 Dec 2002 07:51
Changes: Some problems found in 0.6 were fixed. The -a and -p command line options should now always work as expected. A bashism that caused problems for people who use strictly POSIX shells was removed.
