Our website requires you install or enable flash player for full experience, you can download flash player by clicking here.
Make sure you also have javascript enabled so that flash player & menus work correctly.

Get Adobe Flash player

What would you like to monitor?

For when WebSpyrians have something to say.

Page 1 of 212»

Posts Tagged ‘logging’

Reporting on Astaro Security Gateway

Friday, December 10th, 2010

Astaro Security Gateway devices are capable of producing some very detailed log files including full URLs, usernames, categories, block action and reason which gives you some great reporting options in WebSpy Vantage.

Take a look at our dedicated Astaro pages to get an idea of what can be achieved when analyzing Astaro Web Gateway log files with WebSpy Vantage.

I’ve created some quick videos to show you how to enable the correct logging options on the Astaro Security Gateway appliance, how to import these log files into Vantage, and analyze the data on the Summaries screen. (more…)

Share|

Tags: , , , , , , ,
Posted in Astaro, Firewall Analysis, How To, Log File Analysis, Reports, Third Party, Tips and Best Practices, Vantage, WebSpy | No Comments »

How much do IronPort WSA Appliances eat?

Friday, November 12th, 2010

If you are thinking about deploying IronPort Web Security Appliances you probably want to plan how much disk space to budget for with regards to logging and reporting.

Every organization is different with regards to the volume of logs it creates, but I’ve averaged three data sets submitted to us by customers to produce the following estimates. (more…)

Share|

Tags: , , , , , , , , , , ,
Posted in IronPort, Log File Analysis, System Administration, Tips and Best Practices, Vantage, WebSpy, cisco, storages | No Comments »

How to report on bandwidth utilization using Cisco devices

Thursday, May 27th, 2010

Today I was speaking to a customer that had the following reporting request:

“I would like to know how much of my bandwidth is being eaten by each protocol. I will then use this information to determine if circuit may need to be increased due to increased traffic”.

This customer was collecting syslog messages from a Cisco Firewall, then using WebSpy Vantage to generate reports. In theory, this sounds like a fair plan. Unfortunately, the Cisco Firewall logs many different types of messages. Some to do with denied packets, some to do with authentication, some for vpn and so on. The information contained within each message changes. Some events include the size information that is required for any type of bandwidth assessment and some don’t. Correlating the required events to get any sort of accurate ‘bandwidth’ representation is a bit of a nightmare.

Fortunately, there’s a simpler method. (more…)

Share|

Tags: , , , , , , , , , , , , ,
Posted in Firewall Analysis, FlowMonitor, How To, Reports, System Administration, Tips and Best Practices, Vantage, WebSpy | 1 Comment »

Microsoft TMG and UAG Released! What is the difference?

Wednesday, December 16th, 2009

Most of our customers using Microsoft ISA server are probably aware by now that Microsoft have released the new version of ISA server, which is now re-branded as Microsoft Forefront Threat Management Gateway (TMG). In addition to this, Microsoft has also re-branded its Internet Access Gateway (IAG) to Unified Access Gateway (UAG).
(more…)

Share|

Tags: , , , , , , , , , , , , , ,
Posted in Firewall Analysis, Loaders, Log File Analysis, Microsoft ISA Server, Microsoft Threat Management Gateway, Software Updates, Vantage, Web Browsing Analysis, WebSpy | No Comments »

Convert Microsoft ISA 2006 MSDE logs to WebSpy compatible text logs

Monday, July 20th, 2009

Some customers have experienced issues converting their ISA MSDE logs to text using Microsoft’s MSDEToText.vbs script for ISA 2006 (available at http://www.microsoft.com/downloads/details.aspx?familyid=23531736-942f-466c-acb3-861a899d37b4&displaylang=en)

If you convert your logs to text using this script, they won’t import into WebSpy Vantage or Analyzer due to an extra line break in the header of the file (after #fields:).

We’ve therefore created a modified version of the script that creates compatible log files for WebSpy software.

Download the modified MSDEToText script:
MSDEToText.zip -26 KB

Also make sure the file names of your output log files contain the word WEB (for Web Proxy logs) or FWS (for Firewall Logs) as Analyzer and Vantage use these strings to automatically detect the type of ISA log file.

Happy converting!

Share|

Tags: , , , , , , , , , ,
Posted in Analyzer, Firewall Analysis, How To, Loaders, Log File Analysis, Microsoft ISA Server, Third Party, Vantage, Web Browsing Analysis, WebSpy | 2 Comments »

Unlocking the Value of your Log Data. 10 tips to help you get started

Thursday, July 9th, 2009

This is a popular WebSpy article that we decided to re-post. Click here to download pdf version.

What can log data do for you?

Organisations today are deploying a variety of security solutions to counter the ever increasing threat to their email and Internet investments. Often, the emergence of new threats spawns solutions by different companies with a niche or a specialty for that specific threat – whether it is a guard against viruses, spam, intrusion detection, Spyware, data leakage or any of the other segments within the security landscape.

This heterogeneous security environment means that there has been a proliferation of log data generated by the various systems or devices. As the number of different log formats increases coupled with the sheer volume of log data, the more difficult it becomes for organisations to turn this data into meaningful business information. (more…)

Share|

Tags: , , , , , , , , ,
Posted in Articles | No Comments »

Microsoft to announce Beta 3 for Threat Management Gateway (the new ISA Server)

Monday, May 18th, 2009

It sounds like Threat Management Gateway (TMG), the new re-branded version of ISA Server, has been a popular topic at this years TechEd event in the US.

According to the latest blog from TMG’s Product Unit Manager, David B. Cross, Beta 3 will be released in the next couple of weeks. As for the full release, David says that they are still on track for Q4 this calendar year. (more…)

Share|

Tags: , , , , , , , , , , , , , , , , , , , , , ,
Posted in Analyzer, Firewall Analysis, Live, Loaders, Log File Analysis, Microsoft ISA Server, Microsoft Threat Management Gateway, Software Updates, Vantage, Web Browsing Analysis, WebSpy | No Comments »

Page 1 of 212»