[fwAnalog] Searching for regex expression with Checkpoints Firewall-1

From: MERCERON, Florian (florian.merceron~AT~neuf.com)
Date: Tue Aug 17 2004 - 12:46:26 CEST



Hello,  

I'm currently making a study about event correlation. So I want to get or write regular expression about equipment like Checkpoints Fw-1, cisco Pix, ..

The problem is that for some reason I don't have Checkpoint log sample, so I m searching for :

Otherwise the other solution is to use fwanalog with an output to prelude-lml (prelude-nids project) or outputs which can be easily parse in the OSSIM project input format.

Is this has been realised before?  

Thanks in advance for your answers,  

Best regards,

..........................................................
Florian  

This archive was generated by hypermail 2.1.5 : Wed Jan 05 2005 - 09:42:03 CET