Log and event management appliances improve compliance, security, operations - Network World

Skip Links

DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Network Management

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library.  Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.
Audio

Interop emphasizes savings; Rackspace launches cloud storage. Listen now!

Network World 360

Summer blockbuster movie preview. Listen now!

Network Downtime

Additional Resources

RSS

FEATURED REPORTS

Executive Guide: Storage Heats Up HP

Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.

RSS

FEATURED WEBCASTS

HP Live Webcast: Create a more efficient NOC HP

HP's Network Lifestyle Management can help you automate network processes and improve NOC efficiency. This webinar is part three of a four part series on Business Services Management (BSM) evolution to help you better align IT with business objectives. Register for this event scheduled for Wednesday, January 30, 2008 at 11:00 a.m. PDT/2:00 p.m. EDT to learn more. Register for this live webcast now.

IT Buyer's Guides

View All Buyer's Guides

Free Newsletters

Sign up and receive the latest news, reviews and trends on your favorite technology topics

Save The Date!
What They Are Saying

So the line of defence remains is "PIN NUMBER" Wowww what a strong security ? HSBC , invest some money...- Anonymous

Join the Discussion

Partner Content
NetScout

NetScout is one of the world's premier providers of integrated network and application performance management solutions.

www.netscout.com

Implementation Best Practices

This guide provides a comprehensive checklist for implementing a proactive Network and Application performance management solution.

Learn More Now.

Reduce Time to Troubleshoot

Discover a unique and powerful approach to reducing MTTR in complex environments.

The KPI to Flow
to Packet Process.

Know What's on Your Network?

Distinguishing Business Use of the Network from Recreational Use.

Read the Whitepaper.

Log and event management appliances improve compliance, security, operations

By Chris Petersen , Network World , 03/19/2008
  • Social Web 
  • Email 
  • Feedback 
  • Close

Log and event management is now a requirement for organizations that need to monitor security and IT policy enforcement, document compliance, and achieve IT operations excellence without increasing head count. However, current approaches to log and security event management force customers to purchase and integrate two or more products for each discipline. This approach is complex, costly, and difficult to deploy and manage for enterprises with large data centers, distributed operations and/or branch offices.

In a typical organization, millions of logs are generated by every system, application and device on the network every day. According to the SANS Institute, logs represent up to 25% of the total data created in a typical enterprise.

While most logs are not important or meaningful, a small percentage are extremely valuable. They contain insights and warnings about the health of the network, security issues, compliance violations and operational problems.

To unlock the value of logs, a new class of appliance has emerged that combines universal log-data collection, analysis, event management, automated report distribution and incident response. They employ a building-block approach that allows organizations to start with a single appliance then add more devices as the number of log sources and volumes grow. A single management console makes expansion seamless.

Click to see: Diagram of how log and event management works

Diagram of how log and event management works

These new log- and event-management appliances perform the following continuous cycle of functions:

* Log collection: Log sources can include servers, applications, databases, firewalls, switches, routers, point of sale (POS) systems and more. Anything connected to the network is likely generating logs. Logs can be delivered to the appliance via standard network-logging protocols such as Syslog and Netflow. They can be pulled from Windows hosts (event logs) and any database compliant with Open Database Connectivity. Logs also can be collected by agents from remote sites and flat-file sources (that is, Web server logs) and forwarded to the appliance.

1 | 2 | 3 |  Next >
Comments (1)
Login
Forgot your account info?

Unlock the value of logs - data classificationBy Anonymous on March 28, 2008, 3:51 pmAn excellent synopsis. In the age ever increasing regulatory compliance, more enterprises are being forced to expand and formalize their log management solutions....

Reply | Read entire comment

View all comments

Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.
First Name
Last Name
E-mail
Zip Code