[cciesec2006]

"I'm a bit biased but I think the Eventia Suite is your best option for VPN-1."

I have to disagree. If cost is not an issue, you should definitely look
at ArcSight or NetForensics. It has a complete solution since it can
take logs from a lot more devices than Eventia Suite. From a security
perspective, this device should take logs from firewalls, IDS/IPS, Unix/Linux
servers, windows servers, Cisco routers, switches, VPN devices.
Once it accepts the logs, it can do event correlation.

I tried Eventia Suite NGx R60 about 1.5 years ago. I have to say
that that product is horrendous. The checkpoint SE guy spent
two days help me setup this product and at the end of the
day, eventia Suite couldn't get logs from Pix 7.x code and Juniper
IDP logs. After 2 days, Checkpoint SE and I gave up. I like
ArcSight and NetForensics. They are expensive but worth the money.