Here is just a snipit of my firewall logs from Kiwi sys logger.
My boss wants me reviewing these logs daily. What exaclty should I be looking for? what shoudl pop out as a red flag? there will always be a lot of "deny" right? what about "Deny inbound" shoudl i be looking closely at those lines?
right now i am just having Kiwi go to a .txt file. is there something better i should be exporting to?