Firewall log analyzer and realtime monitor/response tool
'fwlogwatch' is a packet filter and firewall log analyzer. It can output its summaries in text and HTML, with various formatting options. It can produce customizable incident reports and send them to abuse contacts at offending sites or CERTs. Fwlogwatch can also run as a daemon (with Web interface) doing realtime log monitoring and reporting anomalies or starting attack countermeasures. It can detect and process log entries in the following formats:
* GNU/Linux ipchains * GNU/Linux netfilter/iptables * Solaris/BSD/Irix/HP-UX ipfilter * BSD ipfw * Cisco IOS * Cisco PIX / FWSM * NetScreen * Elsa Lancom router * Snort IDS
27 March 2002
Leaders and contributors
|See the CREDITS file in the distribution for a complete list||Contributor|
Resources and communication
|Developer||VCS Repository Webview||http://sourceforge.net/cvs/?group_id=46569|
|Required to build||flex|
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.
The copyright and license notices on this page only apply to the text on this page. Any software or copyright-licenses or other similar notices described in this text has its own copyright notice and license, which can usually be found in the distribution or license text itself.