Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Linux network analysis how do i do it

  • 09-12-2004 12:59am
    #1
    newbie2004
    Registered Users, Registered Users 2 Posts: 4


    Hi folks,

    quick one, I need information/ papers / configurations on setting up network analysis on a Linux debian system using IP Table firewall logs

    I've done the easy part and changed Linux to allow kernal forwarding. I know I need to use the linux firewall but have'nt nailed it down how exactly it needs to be done.


    Anyone else done this before ?


    Thanks in advanced


Comments

  • #2
    shakenbake
    Closed Accounts Posts: 190 ✭✭shakenbake


    Most smart people will tell you to do multi-pipe kungfoo with grep and be off with you, which is no harm you'll end up doing it if your looking through your logs for anything suspicious.

    But if your looking for tools to present the information alittle nicer its an area thats sadly lacking at the moment. Check out 'iptables log analyzer' and 'firewall eyes' (released by a french company). Both were lacking functionality I desired but are usefull anyway. Also check out sawmill and ADMLogger too although I havent had the time to look at the yet.


Advertisement