On Fri, 12 Dec 2003, Todd Gruhn wrote:

> I am looking for a tool to help me do IPF log analysis.
> I found a cool tool called Lire that will do IPF, IPchains, PIX
> and every known service -- see http://www.logreport.com/en/lire
>
> But its picky about which version of the required libs it uses!
> I just want to get something THAT WORKS! So what are you using?
> Did you "roll your own"?
>

SNORT + ACID seems to be the bona fide standard.  Lots of books out there.

I'm actually exploring a problem with NetBSD outputting to pflog(4) in a 
format different than the native OpenBSD pflog94).

~BAS

>
> Any feedback appreciated,
> Todd
>
> -- 
> ___________________________________________________________
> Sign-up for Ads Free at Mail.com
> http://promo.mail.com/adsfreejump.htm
>

l8*
 	-lava (Brian A. Seklecki - Pittsburgh, PA, USA)
 	       http://www.spiritual-machines.org/

"...from back in the heady days when "helpdesk" meant nothing, "diskquota"
meant everything, and lives could be bought and sold for a couple of pages
of laser printout - and frequently were."