This is a discussion on Real-time log exporting - Firewalls ; Hello, I'm doing some research on Firewall-1, and have a question regarding its logging method. From my understanding, you can configure several firewall-1's to send its real-time logs to a management server, which allows for viewing of the logs in ...
Hello,
I'm doing some research on Firewall-1, and have a question regarding its
logging method.
From my understanding, you can configure several firewall-1's to send its
real-time logs to a management server, which allows for viewing of the logs
in real time.
However, I want to be able to "funnel" these logs into a SQL type database
in as much of a real-time manner as possible. The best way to do this seems
to be to run fw logexport and then run a perl/c++ script that will
important that data into a database.
My main question is whether or not it would be reasonable to run the fw
logexport command every few seconds on a management server.
If there are other ways to accomplish what I'm trying to do, I'd love to
hear those as well. Thanks!
