Sawmill
Download Sawmill 8.8.1
30 Days Free Trial
Home Products Downloads Purchase Support About About
Sawmill Sawmill

SAWMILLPLUG-IN

ALL PLUG-INS

Sawmill has plug-ins to support the following log formats:

line
CLAVISTER SG

Sawmill is a Clavister SG log analyzer (it also supports the 1021 other log formats listed to the left). It can process log files in Clavister SG format, and generate dynamic statistics from them, analyzing and reporting events. Sawmill can parse Clavister SG logs, import them into a MySQL, Microsoft SQL Server, or Oracle database (or its own built-in database), aggregate them, and generate dynamically filtered reports, all through a web interface. Sawmill can perform Clavister SG log analysis on any platform, including Windows, Linux, FreeBSD, OpenBSD, Mac OS, Solaris, other UNIX, and others.

Sawmill stores the following non-numerical fields in its database for Clavister SG, generates reports for each field, and allows dynamic filtering on any combination of these fields:

Field  Internal Name
   priority  prio
   ID  id
   rev  rev
   event  event
   action  action
   rule  rule
   receiver interface  recvif
   source IP  srcip
   destination IP  destip
   IP protocol  ipproto
   source port  srcport
   destination port  destport
   TCP header length  tcphdrlen
   SYN  syn
   connection  conn
   IP protocol  connipproto
   receiving interface  connrecvif
   source IP  connsrcip
   source port  connsrcport
   destination interface  conndestif
   destination IP  conndestip
   destination port  conndestport
   connnewsrcip  connnewsrcip
   connnewsrcport  connnewsrcport
   connnewdestip  connnewdestip
   connnewdestport  connnewdestport
   data sent (client)  origsent
   data sent (server)  termsent
   source ping ID  connsrcid
   destination ping ID  conndestid
   connnewsrcid  connnewsrcid
   connnewdestid  connnewdestid
   client_hw  client_hw
   client IP  client_ip
   UDP data length  udptotlen
   iphdrlen  iphdrlen
   type  type
   maxresp  maxresp
   groupaddr  groupaddr
   IP address  ipaddr
   iface  iface
   protocol  protocol
   ACK  ack
   FIN  fin
   user  user
   database  database
   ip  ip
   authsystem  authsystem
   username  username
   access_level  access_level
   userdb  userdb
   server IP  server_ip
   server port  server_port
   client port  client_port
   ICMP type  icmptype
   ECHO ID  echoid
   ECHO sequence  echoseq
   shutdown  shutdown
   reason  reason
   config_system  config_system
   core version  corever
   build  build
   uptime  uptime
   config file used  cfgfile
   localcfgver  localcfgver
   remotecfgver  remotecfgver
   previous shutdown  previous_shutdown
   delay  delay
   unreach  unreach
   PSH  psh
   RST  rst
   satdestrule  satdestrule
   client  client
   offer_ip  offer_ip
   sender mac address  hwsender
   destination mac address  hwdest
   ARP message type  arp
   srcnet  srcnet
   destination network  destenet
   remotegw  remotegw
   idle timeout  idle_timeout
   session timeout  session_timeout
   groups  groups
   authrule  authrule
   authagent  authagent
   authevent  authevent
   callid  callid
   auth  auth
   mppe  mppe
   assigned_ip  assigned_ip

Sawmill stores the following numerical fields in its database for Clavister SG, aggregating them and including them as columns in most reports:

Numerical Field  Internal Name
   events  events
   unique source IPs  unique_source_ips
   IP data length  ipdatalen

See Sawmill Features to learn more about Sawmill's options for viewing, customizing, filtering, exporting and scheduling Clavister SG reports.

Sawmill also supports 1021 other log formats.

© 2024 Flowerfire | Copyright | Privacy Policy | License Agreement | Terms of Use | Contact | Feedback | About
Sawmill Software
Sawmill Software
Back to Sawmill Home