Announcement

Collapse
No announcement yet.

log and event managmet

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • log and event managmet

    How are others managing servers and device logs? We have several windows 2k3/2k8 servers and switches, firewalls, SAN arrays... How do you keep it managable?

    We are rolling out Big Brother Professional for server stats but, what about evenlogs and device logs? if you use a syslog server you have a pile of logs but what about reading/sprting them?

    Just poking around for ideas. Any would be helpful.

    thanks!
    -d

  • #2
    Re: log and event managmet

    For a cheap and cheerful event log solution, I have powershell scripts that archive (to CSV) and clear logs on a daily basis, then copy them to a central server. A bit of Excel Macro programming brings them into a weekly sheet and crosstabs them.
    Tom Jones
    MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
    PhD, MSc, FIAP, MIITT
    IT Trainer / Consultant
    Ossian Ltd
    Scotland

    ** Remember to give credit where credit is due and leave reputation points where appropriate **

    Comment


    • #3
      Re: log and event managmet

      We use a Splunk/Zenoss combo. Works very well for us. Took quite a bit of fine tuning to get everything where we wanted it but it's extremely handy.

      Comment

      Working...
      X