There are definetly a lot of options for log analysis. Personally I like OSSEC which is a HIDS with log analysis in it. It isn't in the ports tree but you can find it at http://www.ossec.net/
For bandwidth stats check out pfstat which is in the ports tree. Tim On Tue May 8 2007 6:53:11 am Alberich de megres wrote: > Hi, > > Yes i have explored ports tree. But maybe i ask the wrong way, what i want > to know is what system you use to analyze logs ( pf, sshd ) and if you use > to control/monitor bandwidth stadistics ( net flow ). > > Thanks. > > On 5/8/07, Edd Barrett <[EMAIL PROTECTED]> wrote: > > Hi, > > > > On 5/8/07, Alberich de megres <[EMAIL PROTECTED]> wrote: > > sed logwatch, i know that i can use it on openbsd. But is there > > > > > some other option in openbsd world? what about snort? what way you use > > > > to > > > > > analyze logs in rout firewall or workstations? > > > > Do you have the ports tree installed? If you do try: > > > > cd /usr/ports > > make search key=log | more > > make search key=analyzer | more > > > > Try different case aswell. > > > > -- > > Best Regards > > > > Edd > > > > --------------------------------------------------- > > http://students.dec.bournemouth.ac.uk/ebarrett/ -- Tim Kuhlman Network Administrator ColoradoVnet.com
