CISCO IRONPORT IRONPORT S-SERIES TRAFFIC MONITOR LOGS V2008-08-22 FOR WSA V5.2+
Sawmill is a Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5.2+ log analyzer (it also supports the 1021 other log formats listed to the left).
It can process log files
in Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5.2+ format, and generate dynamic statistics from them,
analyzing and reporting events.
Sawmill can parse Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5.2+ logs, import them into a MySQL, Microsoft SQL Server, or Oracle database (or its own built-in database),
aggregate them, and generate dynamically filtered reports, all through a web interface.
Sawmill can perform Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5.2+ log analysis on any platform, including Windows, Linux, FreeBSD, OpenBSD, Mac OS, Solaris, other UNIX, and others.
Sawmill stores the following non-numerical fields in its database for Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5.2+, generates reports for each field, and allows dynamic filtering on any combination of these fields:
| Field | | Internal Name |
| date/time | | date_time |
| day of week | | day_of_week |
| hour of day | | hour_of_day |
| field_action | | field_action |
| field_protocol | | field_protocol |
| source IP | | source_ip |
| field_destination_ip | | field_destination_ip |
| field_destination_port | | field_destination_port |
| field_destination_host | | field_destination_host |
Sawmill stores the following numerical fields in its database for Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5.2+, aggregating them and including them as columns in most reports:
| Numerical Field | | Internal Name |
| requests | | requests |
| field_uniquesourceips | | field_uniquesourceips |
See Sawmill Features to learn more about Sawmill's options for viewing, customizing, filtering, exporting and scheduling Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5.2+ reports.
Sawmill also supports 1021 other log formats.