Altair Technologies Ltd.

  home | help | dashboard | my tickets | contact us | login
Help Center

Q&A Directory
    FireGen for Pix Log Analyzer
        How do I configure FireGen to analyze my logs?
        When I run a report on demand, everything works fine but when I schedule a report with the same settings, the reports arrive blank.
        All the reports I generate are blank while the logs seem to contain relevant information for the selected period of time. I also get an error saying: "Analyze has returned code: 1 (invalid). Error: ".
        My log files are very large. What is the limit for FireGen?
        Can I schedule FireGen to run more than once per day?
        When I run a report, all the previous reports get deleted. How can I configure Firegen not to delete the old reports?
        How does FireGen work with zipped log files?
        How can I migrate the FireGen settings from one computer to another?
        What are the limitations of the evaluation version?
        Do I need a syslog server in order to use FireGen?
        How should I configure the Pix firewall in order to generate the logs supported by FireGen?
        How can I change the 50 messages limit that is used in the reports?
        How to upgrade to FireGen 2.60 (or higher) from an older version?
        What is the role of the "Sample log" setting on the "Log profiles" tab?
        How can I configure FireGen so certain sections are not created?
        I scheduled a report on Windows 2003 but no reports are generated. What is the problem?
        Is FireGen available for a Linux platform?
        What is the recommended hardware for the computer running FireGen?
        Can I specify different settings for each log profile?
        I am trying to install FireGen but I get the "The system cannot open the device or file specified." followed by "Internal Error 2755" error messages.
        How can I analyze Cisco router logs with FireGen for Pix Log Analyzer?
        Does FireGen support log analysis when Kiwi Syslog saves the messages into a database?

What is the role of the "Sample log" setting on the "Log profiles" tab?
The log configured as "sample log" in the profiles tab is used by FireGen to determine the location of the logs and the name convention used.

If the "Log file detection method" is set as "Based on file naming convention" the FireGen will attempt to extrapolate the log name for the analysis interval. For example if the sample log is named syslog-2005-07-01.log and the analysis interval is August 2, 2005 then FireGen should be able to determine that the log naming convention is syslog-yyyy-mm-dd.log and that the log that it has to analyze is syslog-2005-08-02.log. If FireGen is not able to determine a pattern in the log file name then it will analyze the log set as "sample log" for that profile.

If the "Log file detection method" is set as "Based on log entry timestamp", FireGen will open all the files in the location of the sample log (and all subdirectories) and test them if: 1) they are the same type of log as the sample log and 2) the first or the last log entry is within the selected analysis interval. This method is useful if the log files do not have a certain naming convention.