There's no text log.

Actually I'm using correlation engine. 3 firewall+3 NIDS+2 HIDS push into 1 correlation engine. Alert from IDS will show the alert message while the firewall log will show event's time, source port, destination port, source IP and destination IP.

For the time being, i'm stick with what I'm doing..doing all analyzing manually. That's why I'm looking for how to's like my previous list.