SNMPLA Version 1.5
===================

This file is best viewed with Notepad.  For better viewing results, select the "Set Font" item from the Notepad "Edit" menu and choose "Courier New", "Regular", "8 points" and Word Wrap.

Latest Build Version:	1.5
Date:			09/28/2002

SNMPLA is a log analyzer program written by Marc D. Reibstein to assist in analyzing incoming messages in either the incoming or combined SNMPLog log files.

You can use SNMPLA to locate the source of incoming SNMPLog messages and view the type of port the incoming message accessed (or tried to access).

At this time there is no help for SNMPLA, but its use is simple.

When you start SNMPLA for the first time, select the "TOOLS" menu item and the "OPTIONS" item.

In the "Directories" section, define the directory where your log files reside.  This is most likely the "C:\Program Files\SNMPLog\logs" directory unless you elected to install SNMPLog in a location other than the default location.

Next define the path to your favorite viewer to view the text logs.  You will most likely wish to use either Notepad or Wordpad.  Enter the path to your text viewer here; For example: "C:\Windows\Notepad.exe" for Notepad, or "C:\Program Files\Windows NT\Accessories\Wordpad.exe" for Wordpad.  (Note: Depending on the version of Microsoft WIndows that you are using, wordpad and notepad may reside in different directories).

After you have defined the latter paths, click the "Ok" button to save your options.

If you have messages in the SNMPLog incoming or combined log files, open the "File" menu and open the desired log file.

SNMPLA will present you with a list of the incoming messages in the selected log file.

You can "right click" anywhere on the SNMPLA dialog window to see a list of actions that can be performed using the selected message.

These actions include:

	Copy Log Entry			- To copy the selected message to the Windows clipboard.
	Lookup Source IP		- To find the Domain Name of the source IP address.
	Add Incoming Source IP		- To filter legitimate incoming IP addresses so
					  they will not appear in the list.
	Add Incoming Destination Port	- To filter legitimate incoming destination ports so
					  they will not appear in the list.
	View the current log		- To open the text log file with the text editor
					  you defined in "Options" above.


The "Filters" menu is another way to add Incoming Source IP and Destination Port filters to prevent legitimate incoming IP addresses and destination ports from being displayed in the analyzer message list.  You can also use the "Filters" menu to edit the filter list by deleting filters you have defined or temporarily disabling or enabling filters you have defined.

The "Tools" menu also allows you to modify the port definition list (SNMPLA.ports).  You can add, delete or modify any entry in the port definition list.

Finally, you can change the way your IP address is stored when you copy a log entry to the clipboard.  Open the "Tools" menu and select "Options", then select the "Copy Options" tab.  This will present you with an option to mash your real IP address with a.b.c

For example, if your real IP address is 111.222.333.444, when you choose the "Hide inbound WAN IP" option your IP will be presented as a.b.c.444 to the Windows clipboard.  This is useful when you wish to lodge a complaint to an ISP against an intruder, but you do not wish them to know your real IP address.
	
			
System Requirements:
--------------------
Microsoft Windows (tm) 9x, NT, 2000 or XP.
MFC42.DLL   or later (Microsoft Foundation Classes)
WinSock 2.0 or later (Microsoft Windows Sockets)
SNMPLog Version 2.0


Installation:
-------------

SNMPLA is installed and uninstalled with SNMPLog version 2.0


SNMPLog files:
--------------

Readme.txt		- the SNMPLog readme file in the SNMPLog folder.
License.txt		- the SNMPLog single user license agreement in the SNMPLog folder.
SNMPLog.exe		- the SNMPLog executable program in the SNMPLog folder.
SNMPLog.hlp		- the SNMPLog help file in the SNMPLog folder.
SNMPLog.cnt		- the SNMPLog help contents file in the SNMPLog folder.
SNMPLog.ini		- the SNMPLog configuration file in your Windows directory.
SNMPLA Readme.txt	- this file in the SNMPLog folder.
SNMPLA.exe		- the SNMPLA executable program in the SNMPLog folder.
SNMPLA.cfg		- the SNMPLA options text file in the SNMPLog folder.
SNMPLA.ports		- the SNMPLA port list text file in the SNMPLog folder.
Uninst.isu		- the SNMPLog un-installation information file in the SNMPLog folder.


Bugs:
-----
Please DO NOT report any bugs you may feel you have discovered in SNMPLA to Marc Niegowski (The author of SNMPLog).

Marc Niegowski DOES NOT support SNMPLA.

If you feel you have discovered a bug in SNMPLA, you can contact the author, Marc D. Reigstein at MDR@MarcsWeb.com for support.


Notes:
------
SNMPLA can also be used to analyze the log files produced by the Unix/Linux version of SNMPLog.  If the Microsoft Windows machine that is running SNMPLA has access to a Unix/Linux machine running SNMPLogd, simply point SNMPLA to the log files which are in the "/var/log/snmplog" directory by default.


Achnowledgements:
-----------------
Microsoft and Windows are registered trade marks of Microsoft Corporation
Linksys is a registerd trademark of the Linksys Group.


SNMPLA Copyright (c) 2000, 2001, 2002
Marc D. Reibstein
All rights reserved.

Email:	MDR@MarcsWeb.com