Nulog
NULOG1 IS OUTDATED, USE NULOG2!
News
Jan 2008 : Nulog2 is out. If you are interested in Nulog features, you probably should check Nulog2 !
Description
Nulog is a firewall log analysis interface written in php. Netfilter and NuFW are able to log selected packets directly in a database like MySQL or PostgreSQL. Nulog uses this interface to display security events in real-time on a user-friendly interface.
Nulog can be used for ulogd logs and/or NuFW logs. It is able to aggregate datas and provide a unified logging system for both systems.
See Nulog screenshots and our Demo Site.
A new presentation video (in french) is also available from INL website
Capabilities
Nulog is able to:
- show the last hosts that sent packets that got blocked by your firewall.
- show the last ports that hosts tried to open.
- search for packets logged from an host.
- search for packets logged for a given port.
- search for packets logged for a given user
Download
Available from the Downloads area.
You can also directly checkout subversion source:
svn co http://software.inl.fr/svn/mirror/edenwall/nulog/trunk/ nulog
Nulog's Source are available for browsing.
Tickets
If you find any problem or bug, watch the tickets list and open a new one if needed.
List of currently open tickets: No results
Support
You can find help for Nulog on INL's forums or on the Mailling list.
INL provides commercial support for installation, configuration and maintenance of all Nufw components.
