Do you run Windows? Do you have huge log files of the activity at your firewall and on your network and find it hard to track the activity in there?
I finally found a neat little tool that can create a new file from your logs that will extract every line that a given search string is present in. I found lots that identify the line or extract or replace the string but this is the only one I have found that pulls the entire line from the log.
With a whole bunch of other functions available I really like the ability to have it find every instance of an IP address and pull the lines into another file so I can see all the activity of that IP address chronologically and in one single place.
Try it.... It's fast.... 22Mb file stripped of 100 lines carrying a given IP in about 8 seconds on a 1GB/128Mb machine......