Servoyant 2.5 is a Log Analyzer product from illumen.com, get 4 Stars SoftSea Rating, Servoyant is a log analyzer for NetScreen firewalls running OS version 3.x and higher. Users must configure the NetScreen firewall to send log messages via syslog to the IP address of the machine on which Servoyant is running. Servoyant contains a built-in syslog server that automatically logs incoming data for the configured firewall to a database for further analysis.
Firewall log analysis is inherently tedious and complex. A typical firewall may have tens, if not hundreds, of thousands of events per day. Sifting through this amount of data to locate critical events is a daunting task that most administrators do not have the time to undertake. The Illumen Group, Inc. developed Servoyant to help network administrators analyze traffic patterns and intrusion attempts. Servoyant uses highly optimized algorithms to process and classify the firewall s raw information.
With Servoyant s reports, Human Resource departments can enforce acceptable usage policies. Also, administrators can determine whether Internet bandwidth is adequate for the organization s needs, and users can develop bandwidth-shaping policies with information from traffic reports. Most importantly, Servoyant can examine denied events and attempted intrusions, and document and investigate those attacks.
Servoyant is a detailed, easy-to-read firewall log analysis for today's connected enterprise.
Firewall log analysis is inherently tedious and complex. A typical firewall may have tens, if not hundreds, of thousands of events per day. Sifting through this amount of data to locate critical events is a daunting task that most administrators do not have time to undertake.
Servoyant Security Analytics program provides detailed, easy-to-read and interpret reports of Internet data traffic for today's connected enterprise. Servoyant uses highly optimized algorithms that process and classify firewall's raw information to generate reports accurately and efficiently.
Servoyant's reports can be leveraged to help secure and protect an organization while improving Internet resource utilization.
Servoyant (formerly iView Security Analytics) is a log analyzer for NetScreen, Cisco PIX, Sonicwall, and Fortinet firewalls. It analyzes the firewall traffic log and provides detailed, easy to read reports. The software uses highly optimized algorithms to process and interpret the raw log information. Servoyant is designed to run on a single location and firewall.
Benefits of Servoyant
* DEVELOP and enforce acceptable use policies
* DETERMINE whether Internet bandwidth is adequate for the organization's needs.
* QUANTIFY and deploy bandwidth shaping policies
* REVEAL denied events and attempted intrusions
* DOCUMENT and investigate attacks from both internal and external sources
* COMBAT those attacks with more comprehensive security policies
Servoyant Software Editions
Servoyant Standard supports analysis of one firewall running any of the following:
1.NetScreen ScreenOS version 3.x or higher
2.Cisco PIX ver. 6.3.1 or higher
3.SonicWall
4.FortiOS 2.50 or higher
Servoyant Enterprise, designed for the organization with multiple firewalls, has all the features and functionality of Servoyant Standard, includes a real time log analyzer, and also supports a SQL back-end and adds Microsoft's ISA Server to the supported firewall list.
Servoyant is designed to run on one firewall at one location.
To install Servoyant, you must run the installer software named iviewsetup.exe. Your computer will install
Servoyant, by default, under your Program Files directory. The Servoyant setup is fully automated and will
create all required entries.
Starting and Running Servoyant
Once you have installed Servoyant, a new software group named Servoyant will appear in your Programs menu.
To start Servoyant, click on the Servoyant entry in the menu.
Configuring Your NetScreen firewall
After installing Servoyant, you must configure your NetScreen firewall to log to the workstation that will be running Servoyant.
Note: This manual assumes that your firewall is running ScreenOS version 4.x. If you are running an earlier version of code, refer to your own firewall s documentation for instructions on how to set this up.
To configure the NetScreen firewall, you must have administrative access, which you can gain via Telnet, the console cable, or HTTP.
To set up the syslog functionality of the firewall via HTTP, do the following:
1) Access the management interface of the NetScreen.
2) Click on the Configuration link in the left panel. A tree structure will expand.
3) Click on the Report Settings link, then the syslog link.
4) Check the Enable Syslog Messages box.
5) If you are logging a remote firewall through a VPN tunnel, check the Use Trust Zone Interface as Source IP for VPN box.
6) Check the Include Traffic Log box to log traffic through the firewall.
7) Enter the IP address or DNS resolvable name of the server running Servoyant in the Syslog Host Name text field box.
8) Set the port to 514. The example dialog box above displays Security Facility and Facility as Local7,
but any value will work.
9) Click Apply. The license of this networking software is Free Trial Software, the price is $199.00, you can free download and get a free trial before you buy. If you want to get a full or nolimited version of Servoyant, you can buy this networking software.