Gents,
I have a general enquiry regarding Log searches and queries which the more I think about could be extreemly useful to many users with multiple Juniper Firewalls. I should also warn you that although I am an experienced user with NetScreens I am a novice when it comes to NSM and have yet to read through the relevant Juniper documentation on this product.
I work for a third party company who manage customers with multiple Juniper NetScreen Firewalls which in turn are managed through NSM. One of the problems I have encountered is with log analysis as it is extreemly long winded trawling through a days worth of logs to find traffic flows.
My questions are:
- Are there any ways to improve log searches e.g. does selecting multiple fields improve or slow searcing?
- Are there any other Juniper or 3rd party tools which help with this?
- Is there any method of querying the logs directly e.g. SQL type queries and if so how can it be done?
Thanks in advance,
Gavrilo