NOKIA IP350/CHECKPOINT NG
Sawmill is a Nokia IP350/Checkpoint NG log analyzer (it also supports the 1021 other log formats listed to the left).
It can process log files
in Nokia IP350/Checkpoint NG format, and generate dynamic statistics from them,
analyzing and reporting events.
Sawmill can parse Nokia IP350/Checkpoint NG logs, import them into a MySQL, Microsoft SQL Server, or Oracle database (or its own built-in database),
aggregate them, and generate dynamically filtered reports, all through a web interface.
Sawmill can perform Nokia IP350/Checkpoint NG log analysis on any platform, including Windows, Linux, FreeBSD, OpenBSD, Mac OS, Solaris, other UNIX, and others.
Sawmill stores the following non-numerical fields in its database for Nokia IP350/Checkpoint NG, generates reports for each field, and allows dynamic filtering on any combination of these fields:
|Field|| ||Internal Name|
| ||date/time|| ||date_time|
| ||day of week|| ||day_of_week|
| ||hour of day|| ||hour_of_day|
| ||source|| ||src|
| ||destination|| ||dst|
| ||operation|| ||operation|
| ||protocol|| ||proto|
| ||rule|| ||rule|
| ||service|| ||service|
| ||source port|| ||s_port|
| ||message info|| ||message_info|
| ||NAT rule number|| ||nat_rulenum|
| ||NAT additional rule number|| ||nat_addtnl_rulenum|
| ||ICMP code|| ||icmp_code|
| ||ICMP type|| ||icmp_type|
| ||TCP flags|| ||tcp_flags|
| ||translated source port|| ||xlatesport|
| ||translated source|| ||xlatesrc|
| ||location|| ||location|
| ||organization|| ||organization|
| ||ISP|| ||isp|
| ||domain|| ||domain|
Sawmill stores the following numerical fields in its database for Nokia IP350/Checkpoint NG, aggregating them and including them as columns in most reports:
|Numerical Field|| ||Internal Name|
| ||events|| ||events|
See Sawmill Features to learn more about Sawmill's options for viewing, customizing, filtering, exporting and scheduling Nokia IP350/Checkpoint NG reports.
Sawmill also supports 1021 other log formats.