Have you tried using the output of "fw logexport" or "fw log"?
fw log [-f[t]] [-c action] [-l] [-start time] # display log
[-end time] [-b stime etime] [-h hostname] #
[log-file] #
fw logexport [-f] [-d delimiter] [-i input log file]# export log to ascii
file
[-n] [-o output ascii file] #
[-r records chunk size] #
Logexport gives you the logs with fields delimited by a semi-colon by
default. The -n option allows you to quickly dump the logs without dns
resolution of the IP addresses. Once you have it in a standard format like
that, you should be able to do whatever you want with a little perl script
or just by importing it into MS Excel.
// Chris
[EMAIL PROTECTED]
-----Original Message-----
From: Ronneil Camara [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 14, 2001 11:32 PM
To: [EMAIL PROTECTED]
Subject: FW-1 logs
Just wonderin if anyone knows of a script or program for linux that will
gather all the logs generated by Checkpoint FW-1 on a WinNT4.
I thought of this because I used Webtrends Firewall Suite by creating a
profile which uses "CP FW-1 using OPSEC LEA".
Thanks.
.-------------------------------------------------------.
o^o | Ronneil Camara | [EMAIL PROTECTED] |
/V\ |--------------------| +847.221.0200 |
// \\ | "The only way to `----------------------------------|
/( )\ | stop a hacker is to think like one." |
^^-^^ | ...brilliant misguided youth |
`-------------------------------------------------------'
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
