Your answer was selected as a Good Answer
Your Public Answer:
“Hi ..., There are several "commercial" solutions to manage log data win servers, network equipment, unix servers, security devices etc. Depending on your requirements and event sources, the solutions may vary. I personally work with RSA Envision (formerly Network Intelligence), Cisco MARS, Loglogic, Q1 Labs and eIQNetworks but there are many other solutions. A good starting point for solution space research might be: http://www.novell.com/products/sentinel/novell2074.pdf Let me know if you have any specific questions, cheers, - yinal”
Sunday, August 26, 2007
What logging solution do you think is nr 1?
Subscribe to:
Post Comments (Atom)
3 comments:
Of course, this depends on what you're looking for. Let off the list was SenSage which excels where data volumes are high and the variety of data sources is wide.
You are right, there are several ther logging solutions, .. The other solutions are from IBM, CA, Novell, Arcsight, Intellitactics, NetForensics, TriGeo, Symantec, Quest, Consul, SenSage, and OpenService..If you look at just the logging manager, you can extend solution set with LogRhythm, Splunk, Snare and Kiwi Syslog Daemon ..
for enterprise log management I would lean toward Loglogic. They have been focused on this space the longest. Logrhythm is more for SMB and doesn't do as well in larger environments. RSA's enVision is a decent tool, but can be very expensive in a large deployment.
Post a Comment