CLAVISTER SG SERIES (COMMA-SEPARATED)
Sawmill is a Clavister SG Series (comma-separated) log analyzer (it also supports the 1021 other log formats listed to the left).
It can process log files
in Clavister SG Series (comma-separated) format, and generate dynamic statistics from them,
analyzing and reporting events.
Sawmill can parse Clavister SG Series (comma-separated) logs, import them into a MySQL, Microsoft SQL Server, or Oracle database (or its own built-in database),
aggregate them, and generate dynamically filtered reports, all through a web interface.
Sawmill can perform Clavister SG Series (comma-separated) log analysis on any platform, including Windows, Linux, FreeBSD, OpenBSD, Mac OS, Solaris, other UNIX, and others.
Sawmill stores the following non-numerical fields in its database for Clavister SG Series (comma-separated), generates reports for each field, and allows dynamic filtering on any combination of these fields:
| Field | | Internal Name |
|---|
| | date/time | | date_time |
| | day of week | | day_of_week |
| | hour of day | | hour_of_day |
| | firewall | | firewall |
| | category | | category |
| | rule | | rule |
| | severity | | severity |
| | description | | description |
| | destination mac address | | hwdest |
| | destination IP | | destip |
| | destination port | | destport |
| | ETH protocol number | | enetproto |
| | IP protocol | | ipproto |
| | receiver interface | | recvif |
| | source mac address | | hwsrc |
| | source IP | | srcip |
| | source port | | srcport |
| | ACK | | ack |
| | ARP message type | | arp |
| | connection | | conn |
| | CWR | | cwr |
| | destination interface | | destif |
| | ECE | | ece |
| | FIN | | fin |
| | ICMP destination IP | | icmpdestip |
| | ICMP source IP | | icmpsrcip |
| | ICMP type | | icmptype |
| | PSH | | psh |
| | RST | | rst |
| | SYN | | syn |
| | URG | | urg |
| | action | | action |
| | algmod | | algmod |
| | algsesid | | algsesid |
| | devdate | | devdate |
| | devtime | | devtime |
| | explanation | | explanation |
| | ID | | id |
| | IP data length | | ipdatalen |
| | iphdrlen | | iphdrlen |
| | iptotlen | | iptotlen |
| | data sent (client) | | origsent |
| | params | | params |
| | securitygateway | | securitygateway |
| | tcpdatalen | | tcpdatalen |
| | TCP header length | | tcphdrlen |
| | tcptotlen | | tcptotlen |
| | data sent (server) | | termsent |
| | TTL | | ttl |
Sawmill stores the following numerical fields in its database for Clavister SG Series (comma-separated), aggregating them and including them as columns in most reports:
| Numerical Field | | Internal Name |
|---|
| | event | | event |
See Sawmill Features to learn more about Sawmill's options for viewing, customizing, filtering, exporting and scheduling Clavister SG Series (comma-separated) reports.
Sawmill also supports 1021 other log formats.
