fwlog version 1.3 ================== fwlog.pm helps to parse firewall log data and extract the following information. - action (accept/drop/etc) - source (source IP address or hostname) - destination (destination IP address or hostname) - protocol (IP protocol number or name such as TCP/UDP/ICMP/50/etc) - service (port or service name or number such as http/80/etc) This Perl module aims to reduce the effort required to parse the multitude of different firewall log formats. Due to the large number of firewalls and log formats this module cannot cover every type and version of firewall. If you have logs which are not supported, please feel free to send me some sample logs, with obfuscated IP's if you wish. For more information please see the POD included in the module using perldoc fwlog INSTALLATION To install this module type the following: perl Makefile.PL make make test make install DEPENDENCIES A working Perl installation. COPYRIGHT AND LICENCE This program is free software; you can redistribute it and/or modify it under the terms of the Perl Artistic License or the GNU General Public License as published by the Free Soft- ware Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. If you do not have a copy of the GNU General Public License write to the Free Software Foun- dation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.