Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: InfoSec Handlers Diary Blog - SANS Internet Storm Center InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

What is your firewall log telling you - responses

Published: 2010-03-05
Last Updated: 2010-03-05 21:10:47 UTC
by Kyle Haugsness (Version: 1)
2 comment(s)

Responses to our earlier diary entries regarding firewall log parsing (story1 and story2) have been trickling in. 

Reader Matthias has some small awk/shell scripts for parsing iptables log files that he shared here:

And reader Christian recommends using Prelude LML (log monitor lackey):

Update #1: An anonymous reader also suggests .

-Kyle Haugsness

Keywords: firewall log
2 comment(s)
Diary Archives