RE: Fwd: Centralizing Event Viewer Logs

Check out Loglogic http://www.loglogic.com

It will handle up to 4000 mps sustained and can handle spikes up to 30000 mps.



-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On Behalf Of James Winzenz
Sent: Friday, February 01, 2008 12:28 PM
To: focus-ms@xxxxxxxxxxxxxxxxx
Subject: RE: Fwd: Centralizing Event Viewer Logs

IMHO, you get what you pay for.

Are you referring to this product? http://sourceforge.net/projects/eventlogmonitor/

If so, it looks like it can only deal with windows logs. That is not going to get you very far. If you want to know what is going on within your network, you really need something that can handle syslog messages as well (routers, firewalls, etc.).

Although not pertinent to the product you mentioned, I remembered reading on GFI's website about their event log management product. They were *boasting* that their collector could handle up to 6 million events per hour. That boils down to a paltry 1667 events per second, which is absolutely pathetic. A couple of core routers/firewalls could easily overwhelm this.

James Winzenz
Infrastructure Engineer - Security
Pulte Homes Information Services


-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On Behalf Of ottobeli82@xxxxxxxxxxxx
Sent: Friday, February 01, 2008 9:08 AM
To: focus-ms@xxxxxxxxxxxxxxxxx
Subject: Re: Fwd: Centralizing Event Viewer Logs

Is there someone who already tried the product SB Eventlog Monitor?

I´m thinking about starting some tests in my network (all windows, 2000 machines) centralizing all the logs in one server, but I would like to hear from you any kind of experience with this product.

I would like to know how the product behaves concerning network traffic, manageability and event correlation.

CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited. If you have received this communication in error, please notify the sender immediately by email and delete the message and any file attachments from your computer. Thank you.

Relevant Pages

  • RE: Fwd: Centralizing Event Viewer Logs
    ... you get what you pay for. ... Are you referring to this product? ... it looks like it can only deal with windows logs. ... If you want to know what is going on within your network, you really need something that can handle syslog messages as well. ...
    (Focus-Microsoft)
  • Re: Slow internet connection woes
    ... And we don't have the money to pay someone on the ... learning when things come up (slow network, e-mail not working, etc.) ... For real time monitoring i use solarwinds network monitor and engineer's ... trap for usage over X for any port. ...
    (microsoft.public.windows.server.sbs)
  • Re: CPU Utilization - Xbox 360 Extender Vista Media Center
    ... I see the spikes Dan mentioned but I don't see any ... obviously they only go at 100 mbps but network bandwith isn't an issue - ... This system runs on DDR memory which are in pairs. ... while also recording, the high CPU utilization causes choppy ...
    (microsoft.public.windows.mediacenter)
  • Re: AT&T/Bellsouth removes alt.binaries.pictures.woodworking
    ... the network by other Verizon users, which is a violation of our ... have been dropped from their server they want you to make it quit ... People pay for what they want. ... USENET is cheap if all you want is ...
    (rec.woodworking)
  • Re: FBSD and and the sk() network driver
    ... believe the old adage of "you gets what you pay for...". ... Mind that this adage is only a rule of thumb: ... the 100Mbit the rest of the network was using. ... About the same class of manageability as the stuff that underpins ...
    (comp.unix.bsd.freebsd.misc)