Sawmill
Download Sawmill 8.8.1
30 Days Free Trial
Home Products Downloads Purchase Support About About
Sawmill Sawmill

SAWMILLPLUG-IN

ALL PLUG-INS

Sawmill has plug-ins to support the following log formats:

line
HP TIPPINGPOINT IPS 2.5.3

Sawmill is a HP TippingPoint IPS 2.5.3 log analyzer (it also supports the 1021 other log formats listed to the left). It can process log files in HP TippingPoint IPS 2.5.3 format, and generate dynamic statistics from them, analyzing and reporting events. Sawmill can parse HP TippingPoint IPS 2.5.3 logs, import them into a MySQL, Microsoft SQL Server, or Oracle database (or its own built-in database), aggregate them, and generate dynamically filtered reports, all through a web interface. Sawmill can perform HP TippingPoint IPS 2.5.3 log analysis on any platform, including Windows, Linux, FreeBSD, OpenBSD, Mac OS, Solaris, other UNIX, and others.

Sawmill stores the following non-numerical fields in its database for HP TippingPoint IPS 2.5.3, generates reports for each field, and allows dynamic filtering on any combination of these fields:

Field  Internal Name
   log type  log_type
   message version  message_version
   alert hostname  alert_hostname
   alert IP  alert_ip
   action  action
   severity  severity
   policy UUID  policy_uuid
   policy name  policy_name
   signature name  signature_name
   protocol name  protocol_name
   source address  source_address
   source port  source_port
   location  location
   destination address  destination_address
   destination port  destination_port
   events  events
   traffic threshold parameters  traffic_threshold_parameters
   traffic capture available  traffic_capture_available
   slot and segment  slot_and_segment
   request target  request_target
   request detail  request_detail
   firewall IP protocol  firewall_ip_protocol

Sawmill stores the following numerical fields in its database for HP TippingPoint IPS 2.5.3, aggregating them and including them as columns in most reports:

Numerical Field  Internal Name
   events  events
   unique source addresses  unique_source_addresses

See Sawmill Features to learn more about Sawmill's options for viewing, customizing, filtering, exporting and scheduling HP TippingPoint IPS 2.5.3 reports.

Sawmill also supports 1021 other log formats.

© 2024 Flowerfire | Copyright | Privacy Policy | License Agreement | Terms of Use | Contact | Feedback | About
Sawmill Software
Sawmill Software
Back to Sawmill Home