windows Firewall log analysis

Andy Cerasoli 20 Reputation points
2023-01-21T16:01:40.8233333+00:00

Does anyone know of a tool to analyse windows firewall logs?

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
11,758 questions
0 comments No comments
{count} votes

Accepted answer
  1. MotoX80 30,991 Reputation points
    2023-01-21T19:58:12.33+00:00

    I would suggest starting with Log Parser.

    [https://www.microsoft.com/en-us/download/details.aspx?id=24659

    [https://www.sentinelone.com/blog/log-parser-tutorial/

    Or Powershell.

    [https://devblogs.microsoft.com/scripting/learn-how-to-use-powershell-to-parse-the-firewall-log/

    [https://social.technet.microsoft.com/Forums/en-US/f566c3a3-9656-4239-8005-258f6edc2fca/windows-firewall-log-parsing

    0 comments No comments

3 additional answers

Sort by: Most helpful
  1. Dave Patrick 426.2K Reputation points MVP
    2023-01-21T16:05:22.7333333+00:00

    You could turn on some logging here.

    --please don't forget to upvote and Accept as answer if the reply is helpful--

    User's image

    0 comments No comments

  2. Thameur-BOURBITA 29,686 Reputation points
    2023-01-21T16:53:56.92+00:00

    Hi,

    If you want enable logging on many servers , you can use Group policy Object:

    Configure the Windows Defender Firewall with Advanced Security Log

    Please don't forget to mark helpful answer as accepted

    0 comments No comments

  3. Andy Cerasoli 20 Reputation points
    2023-01-23T10:01:31.1166667+00:00

    Thank you i will take alook

    0 comments No comments