Re: [fwAnalog] Checkpoint 4.1

From: Balázs Bárány (balazs~AT~tud.at)
Date: Tue Nov 25 2003 - 16:35:22 CET

• Next message: Balázs Bárány: "Re: [fwAnalog] FW-1 and FW-1 NG logs"
• Previous message: Balázs Bárány: "Re: [fwAnalog] Which opts to use for Linksys firewall"
• In reply to: Malcolm Badley: "[fwAnalog] Checkpoint 4.1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello,

• Malcolm Badley <malcolm~AT~psops.net> [2003-11-24 14:52]:
  > Does fwanalog work with Checkpoint 4.1 log files?
  I don't know. Support for some firewall types was contributed by fwanalog users; I don't have access to those firewalls so I can't check.

You could send a few lines of your logs to the mailing list so people who use checkpoint devices can perhaps compare the format with the one they are using. (Don't forget to anonymize the IP addresses in the log.)

> Do you have to export them first? Is it possible to use fwanalog without
> exporting the log files for Checkpoint?
fwanalog is a Unix shell script using some Unix text processing tools like perl, egrep and also the software "analog". If you can run those on the Checkpoint device, you don't need to export the logfiles. If not, then the logfiles need to be put on a Unix machine in some way.

Regards

-- 
_________________________________________________________________________
Balázs Bárány       balazs~AT~tud.at        http://tud.at       ICQ 10747763

A good engineer will make considerable effort to avoid additional effort.

• Next message: Balázs Bárány: "Re: [fwAnalog] FW-1 and FW-1 NG logs"
• Previous message: Balázs Bárány: "Re: [fwAnalog] Which opts to use for Linksys firewall"
• In reply to: Malcolm Badley: "[fwAnalog] Checkpoint 4.1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Tue Nov 25 2003 - 17:22:02 CET