This time we did not use a line graph to visualize a firewall log file, but a treemap. The picture was generated with AfterGlow 2.0. The hierachy used is: Source Address | Target Port | Target Address and the coloring is based on the Source Address.
This graph was generated from a firewall log using AfterGlow. The properties file used was the following:
color.event="blue" if ($fields > 1024)
This page is meant to help collect parsers for log files. Post a comment with either a link to your parser or past the parser in here if it is not too big.
A new release of AfterGlow, Version 1.5.8, is due soon. A few new functions are included, among them a snort alert file parser. The tool can be downloaded at: http://afterglow.sourceforge.net