fwlogwatch is a packet filter / firewall / IDS log analyzer written by Boris Wesslowski originally for RUS-CERT. It supports a lot of log formats and has many analysis options. It also features incident report and realtime response capabilities and an interactive web interface. General features: Can detect and process log entries in the following formats: Linux ipchains Linux netfilter/iptables So
