|
V7.1 and later of SurfStats Log Analyzer,
Enterprise Edition features the ability to analyze log files generated
by the Cisco PIX Firewall and Microsoft ISA server. In addition
to being a Cisco PIX Log Analyzer and a Microsoft ISA Log Analyzer,
SurfStats Log Analyzer Enterprise Edition can also analyze log files
from web sites, other proxy server and firewalls as well as log
files from Streaming Media Servers.
SurfStats as a Cisco PIX Log Analyzer
When SurfStats Log Analyzer analyzes log files from a Cisco PIX
Firewall it scans the log files for PIX-5-304001 messages. These
are notification messages generated by the PIX firewall to indicate
that a URL was successfully accessed. Log lines of this type contain
the IP address and the rest of the URL accessed by the user. No
host name is present in the URL as the host name is replaced with
the destination IP address by the PIX firewall. SurfStats Log Analyzer
ignores other message types found in the Cisco PIX log file.
SurfStats as a Microsoft ISA Log Analyzer
Microsoft ISA Server can log in two formats:
- W3C Format - which is similar to the preferred log file
format for IIS. The W3C format contains both log data and directives,
which indicate the version data and logged fields in the log
file.
- ISA Format - which logs a specified set of fields. Only
log data, without directives, is logged in the log file.
SurfStats Log Analyzer can interpret the W3C format as well as ISA
format when processing logs generated by a Microsoft ISA Server.
When specifying a relative directory the log files can be found
in the ISALogs folder under the ISA installation folder. For the
W3C format specify the GMT time offset on the profile the same as
the GMT offset on the server. For the ISA format specify a GMT time
offset of 0.
To see a list of log formats supported
by SurfStats Log Analyzer please visit the
Supported Log Formats
page.
Please visit the
Download Page to download
a 30-day fully functional evaluation version of SurfStats Log Analyzer.
|
