This session is a discussion on the three main strategies for SIEM optimization and the role of centralized log management within that optimization.
Use Syslog-ng to enable scaling, redundancy, and load balancing for Windows Event Forwarding
Learn how to use the Syslog-ng Azure Sentinel destination driver to ship logs directly into Sentinel via API
Learn how to use syslog-ng PE to send and receive log messages using the GCP Pub/Sub asynchronous messaging system
Some people think log collection and log management should be part of the SIEM toolkit. We beg to differ, and we have some good reasons to. Neil will introduce the concept of log management and how it completes the ecosystem around logs in an enterprise setting.
Whether it's user activity, performance metrics, network traffic or any other log data, syslog-ng can collect and centralize log data. You can remove data silos and gain full-stack visibility of your IT environment. Depending on its configuration, one syslog-ng server can collect more than half a million log message per second from thousands of log sources.
Learn more about using syslog-ng Premium Edition to efficiently feed your log data to Google Stackdriver. This video adds a little complexity to the configuration to highlight more of syslog-ng’s log management capabilities. Watch the video now.
Learn the basics of how to configure syslog-ng Premium Edition to work with Google Stackdriver. This high-level overview uses a simple configuration to show you how to collect and analyze log data, and forward it to Stackdriver. Watch the video now.
syslog-ng Premium Edition delivers the log data critical to understanding what is happening in your IT environment. Whether it's user activity, performance metrics, network traffic or any other type of log data, syslog-ng can collect and centralize it. You can remove data silos and gain full-stack visibility of your IT environment.
syslog-ng Open Source Edition, is a flexible and simplified log collection and processing solution.