Security Basics mailing list archives
Re: Network event viewer
From: Shawn Parrish <shawn.parrish () fh org>
Date: Tue, 9 Oct 2007 07:43:43 -0700 (MST)
We're using SNARE to syslog stream Windows event viewer information to our Splunk servers. Both free and work pretty well. SNARE (http://www.intersectalliance.com/projects/SnareWindows/) Splunk (http://www.splunk.com/) Free for <500MB/day Shawn K. Parrish Food for the Hungry / U.S. shawn.parrish () fh org www.fh.org Food for the Hungry...meeting physical and spiritual needs worldwide. ----- Original Message ----- From: "Raoul Armfield" <armfield () amnh org> To: "Joey Boyer" <joey.boyer () gmail com> Cc: security-basics () securityfocus com Sent: Friday, October 5, 2007 10:49:53 AM (GMT-0700) America/Phoenix Subject: Re: Network event viewer Thanks but I am looking for something for windows. I do not mind a linux backend (syslog) but the logs I am need to consolidate are windows eventlogs. You would think that MS would have included this capability in their servers right? Raoul Joey Boyer wrote:
You may want to look into Nagios. http://www.nagios.org/ FOSS, works great for us. Cheers. On 10/5/07, * TVB NOC* <tvbnoc () temeculavalleybank com <mailto:tvbnoc () temeculavalleybank com>> wrote: I have a product I am testing right now made by a company called Adventnet. The product is called Event Log Analyzer, so far it has been a decent solution, it also provides SOX compliance reports as well. www.adventnet.com <http://www.adventnet.com> -----Original Message----- From: listbounce () securityfocus com <mailto:listbounce () securityfocus com> [mailto:listbounce () securityfocus com <mailto:listbounce () securityfocus com>] On Behalf Of Raoul Armfield Sent: Friday, October 05, 2007 8:44 AM To: security-basics () securityfocus com <mailto:security-basics () securityfocus com> Subject: Network event viewer We are looking into a low cost easy to setup software that will consolidate the eventlogs of our servers in one location. I found a product called Network Event Viewer by a company called Corner Bowl Software. You can direct the eventlogs into a SQL database and also you can have it send emails based on criteria you specify. So far I am just saying basically what the webpage says. I was wondering if any of you have experience using this product and what your thoughts are? If you have additional suggestions on low cost solutions I would be happy to entertain them as well. Raoul
Current thread:
- Network event viewer Raoul Armfield (Oct 05)
- RE: Network event viewer TVB NOC (Oct 05)
- Message not available
- Fwd: Network event viewer Joey Boyer (Oct 05)
- Message not available
- Message not available
- Re: Network event viewer Raoul Armfield (Oct 05)
- RE: Network event viewer Nick Vaernhoej (Oct 09)
- Re: Network event viewer Manuel Arostegui Ramirez (Oct 09)
- Re: Network event viewer Shawn Parrish (Oct 09)
- RE: Network event viewer TVB NOC (Oct 05)
- Re: Network event viewer Seyhan Tekelioglu (Oct 09)
- RE: Network event viewer Ackley, Alex (Oct 10)
- <Possible follow-ups>
- Re: Network event viewer jisaacs (Oct 09)
- Re: Re: Network event viewer read (Oct 09)