fwlogwatch
fwlogwatch is a packet filter and firewall log analyzer with support for Linux ipchains, Linux netfilter/iptables, Solaris/BSD/HP-UX/IRIX ipfilter, Cisco IOS, Cisco PIX, Netscreen, Windows XP firewall, Elsa Lancom router, and Snort IDS log files. It can output its summaries in text and HTML, and it has a lot of options. fwlogwatch also features an interactive incident report generator and realtime anomaly response capability with a Web interface and internationalization.
| Tags | Internet Log Analysis Security Networking Firewalls Monitoring |
|---|---|
| Licenses | GPL |
| Operating Systems | POSIX BSD Linux Solaris |
| Implementation | C |
Recent releases
- 17 Apr 2006 11:07
Changes: This release adds GNU adns support and several parser modifications triggered by log submissions.
- 25 Apr 2004 16:11
Changes: This release adds an interactive status page, improved memory allocation, stateful real-time response start, basic ipfw and fwsm support, and many smaller features.
- 23 Jun 2003 11:03
Changes: This release adds inclusion/exclusion functions to the command line. All HTML colors are done with CSS styles now. There are a lot of small fixes.
- 08 Apr 2003 01:08
Changes: This release fixes problems with multiple input file support, the whois resolver, and status Web server page reloading.
- 22 Mar 2003 16:00
Changes: Support for multiple input files and various small fixes have been added.
