LogServer Extension

The op5 LogServer extension adds an effective, secure and central log handling to your op5 Monitor system. It includes a list of various tasks such as:

  • Application errors  – great for in depth problem analysis
  • Security – both for direct log analysis and compliance
  • Monitoring of outsourced services – since it can be difficult or impossible to access the actual server or application environment.
  • Report such as top logging hosts etc.
  • Utilise the det detailed data in any logs

Vast amounts of data is generated every day. Large parts of this data is sensitive, highly valuable data stored in logs, often in hundreds if not thousands of different locations in the network. Each application has its own logs and there are many different type of logs out there. It is an impossible task to manually keep track of all logs and the data generated to them. A central log server management like op5 LogServer Extension will help you to centralize your logs in one easy to manage location, to enhance the security and data integrity and to meet compliance requirements.

LogServer

One centralized log server for easy log monitoring

Log management is a burden for any system administrator who wants to keep up a good rate of work. Servers, systems or fire walls can generate millions of events every day. It is not unusual for a Sysadmin to dedicate one day per week to do proper follow-up or analysis of multiple events. By collecting and “time stamping” all the logs into one secure centralized server, making them search able and setting filter rule, you the tool you need.  You can easily search, monitor, report, and analyze your data.

Security

Collecting all logs in to a central archive for search and filters is a core and basic function. However it does introduce security and integrity challenges. op5 LogServer has an easy to administrate secure access control that regulates what users can see and do when accessing the central Log Database. This enables IT and security staff to distribute access to the log data based on what clearance or function the individual or a group has without the risk of enabling Log access to sensitive or restricted data. The central log archive makes it possible to easily identify any possibly manipulated or deleted logs, making it harder for a intruder to hide its tracks. Log filters can be used to quickly identify and notify IT staff of any security breaches, making it possible to proactively stop the intrusion, track taken actions and to collect evidence.

Proactive Log Monitoring

op5 Monitor can monitor filters and events in op5 LogServer, triggering alarms and sending messages when issues arises. The alarms from op5 Monitor can include data from the logs giving detailed information to identify where and what has caused the problem. The Log data can be automatically processed and formed into weekly or monthly reports that are distributed directly via E-mail to relevant staff.

Troubleshooting in a snap

Through its easy-to-use web interface, complex and distributed log data is instantly available. This saves time and resources for troubleshooting or for creating various traceability reports. All systems can generate an event log, which is invaluable for troubleshooting. Systems can provide logs in different levels, from information logs or debug messages to system critical messages. Troubleshooting applications or network outages in minutes instead of hours, reducing the mean time to repair (MTTR), raising the over all quality of your IT services.

Smart log search

op5 SmartSearch utilizes a full text indexing in an easy to use query language that enables advanced and very fast smart searches into large amounts of log data. The data can be easily exported to create valuable business reports. This reduces time and resources for fault management and makes the generally cumbersome task of log management into a simple one!

Compliance

Complying with traceability standards for SOX, PCI, BITS etc. from your Windows or UNIX based applications and infrastructure can be a real beast. With a centralized logserver you can easily manage all enterprise logging tasks from one central log server. This gives you easy access and an outstanding overview of all your systems and makes fault management and traceability a walk in the park. Stay on top with op5 and comply with traceability standards and legislations with our solution for easy log management.

op5 LogServer Extension manages logs from:

  • Syslog
  • Windows
  • Windows Event log
  • Windows Application logs (IIS, backup software and so on)
  • UNIX/Linux
  • Firewall
  • Network devices
  • Switches/Routers (all hardware that can create sys logs)
  • And more…

And reports on:

  • Any standard log file
  • Application Events
  • File Replication Events
  • Security Events
  • DNS Server Events
  • Directory Events

 

Note!

The op5 LogServer Extension requires its own hardware server or virtual server as it needs the performance capacity to handle maximum number of logs.

 

Feature List

Easy Administration

  • Easy to use web interface
  • op5 Smart Search with full text indexing
  • Automate troubleshooting,
  • Find the problems faster with op5 SmartSearch and reports.
  • Discover the root cause to problems
  • Automatic filterscan with setup direct in Monitor Enterprise

Compliance

  • Get help to meet compliance requirements and regulatory demands.
    • Log reviews.
    • Audit trail collection.
    • Reporting and file integrity monitoring.
    • Traceability compliance.

Security

  • Secure data handling
  • Log Data Integrity.
  • Backup and long term storage of log data.
  • User and group access management to assure integrity.
  • Auditability.
  • Faster investigations of security incidents
  • Real time detection of network and system intrusions.
  • Make it hard for an intruder to manipulate the logs to cover its tracks.

Reports

Manages logs from

  • Syslog
  • Windows
  • Windows Event log (limit of 960 caracters)
  • Windows Application logs (IIS, backup software and so on)
  • UNIX/Linux
  • Firewall
  • Network devices
  • Switches/Routers (all hardware that can create sys logs)
  • And more…

Built on Open Source

  • Access to source code
  • Open to code audit

Central Log Server

  • Cross platform log collection and storage in one centralized log archive.
  • Log Compression minimizes the storage size required for logs.
  • Log Rotation enables you to set-up a policy rotating to long term archiving on external media (SAN, Disk etc).

Supported Log Formats

  • Supports all syslog formats
  • Compatible agents sending (udp/tcp).
  • Agents is also available for Windows and flat text files.
  • Support for udp & tcp log traffic
  • Supports client and central based filtering

Log Monitoring

  • Enhancing security monitoring
  • With op5 Monitor you can monitor your logs and report on:
    • Application Events
    • File Replication Events
    • Security Events
    • DNS Server Events
    • Directory Events
    • Any standard log file

Fast installation and setup

Supported by op5

  • Turn-key solution
  • Professional support and guarantees from op5
  • Combination flexibility and cost effectiveness of open source with responsibility from provider.
  • Professional services and documentation
  • Access to a network of certified local partners for customer specific development, consultancy, training etc

Professional Services

  • Expert support via phone and email
  • Documentation
  • Automated patch management
  • Free upgrades
  • Training
  • Events, conferences, seminars