* The Reviewmeister tests out security information management tool, Network Intelligence Okay, you’ve got your firewalls, your IDS, your anti-virus, and whatever other security tools you’re using. And they’re all spitting out huge amounts of data. So how are you supposed to make time to plow through all those logs?Well, that’s why vendors came up with security information management (SIM) tools, and that’s why we’re testing them.This week, we’re checking out Network Intelligence. The products we tested all handle SIM differently. One major difference is how they are sold. Network Intelligence is the only product sold as an appliance with hardware and software included. That makes it easy to set up and use. In terms of the cost model, Network Intelligence is licensed by events per second (EPS).Network Intelligence sent an installation team to our lab to configure the device for our lab environment and set everything up so alerts and events were being sent to their system from three initial devices in our test bed – a NetScreen Technologies firewall, a Cisco VPN Concentrator and a Cisco Catalyst switch – which all logged directly to syslog. The Network Intelligence install was quick, lasting just two hours for initial setup, device configuration and a quick tutorial. The installation times directly correlate with the complexity of the product. Network Intelligence is the cleanest product when it comes to setup and adding new devices to monitor, but it is also the least flexible.We included a NetScreen firewall running an older version of its operating system in our test bed. Network Intelligence could not evaluate events from this NetScreen firewall because they only supported newer versions of the operating system.Each product gathers data differently, and we were constantly reconfiguring our test bed just to log to a specific product. For example, most products supported the general syslog format of the VPN Concentrator, but Network Intelligence only supported the Cisco IOS logging format.Overall, Network Intelligence provides the best setup for new devices, but you are limited to the products they support. Because security analysts will spend many hours a day looking at the SIM interface, the GUI should be intuitive, easy to use and helpful. Again, Network Intelligence provides the most intuitive, easy-to-use interface, but it is not as flexible as some of the other products.For the full report, go to https://www.nwfusion.com/reviews/2003/1215semrev.html Related content news Dell provides $150M to develop an AI compute cluster for Imbue Helping the startup build an independent system to create foundation models may help solidify Dell’s spot alongside cloud computing giants in the race to power AI. By Elizabeth Montalbano Nov 29, 2023 4 mins Generative AI news DRAM prices slide as the semiconductor industry starts to decline TSMC is reported to be cutting production runs on its mature process nodes as a glut of older chips in the market is putting downward pricing pressure on DDR4. By Sam Reynolds Nov 29, 2023 3 mins Flash Storage Technology Industry news analysis Cisco, AWS strengthen ties between cloud-management products Combining insights from Cisco ThousandEyes and AWS into a single view can dramatically reduce problem identification and resolution time, the vendors say. By Michael Cooney Nov 28, 2023 4 mins Network Management Software Cloud Computing opinion Is anything useful happening in network management? Enterprises see the potential for AI to benefit network management, but progress so far is limited by AI’s ability to work with company-specific network data and the range of devices that AI can see. By Tom Nolle Nov 28, 2023 7 mins Generative AI Network Management Software Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe