That got your attention didn't it? I know this is a lengthy subject, because I
was reading through the other thread titled "parsing logs ultra-fast inline".

Is there a "logwatch" equivalent that reports on PIX v7.x logs (not v6)?
Logwatch ( is just so simple, and does
some reporting on syslog files.

I just have one PIX device to worry about. Should I just come up with a list
of include/exclude regexps instead of trying to find some tool? Should I
collect iptables logs too?

I'm probably missing the bigger picture of network security reporting. Your
experience and helpful tips are appreciated. :-)

[See Also] (pix v6 parser) (what version is this for?)


"Make it better before you make it faster."
firewall-wizards mailing list