« Get Compliant. Improve Your Business. | Main | Vote For LogLogic Now! »
Five tips for building log management infrastructures
Whether you're building your own logging tool or evaluating a log management solution, there are at least five factors you should consider from Jian's recent article in ComputerWorld:
- The retention period: The log retention period obviously depends on your requirements. If you are building out the infrastructure for troubleshooting and short-term reporting, you may need to keep only one or two months of logs.
- Log volume: Log volume is probably one of the most critical factors in building your infrastructure. It has a direct impact on your retention policy, report/search performance, aggregation performance and correlation performance.
- Source applications: What are all the devices, servers and applications that will be logging? If you are developing your own solution, there may be a lot of work for you to parse the various log messages.
- Reports and analysis: Log analysis includes everything from reports, correlation and anomaly detection to trend analysis. It again depends on your requirements. However, your product should have some of the basic functions such as threshold and rule-based alerts via e-mail or SNMP.
- Network topology: Your network topology affects how you should design your logging infrastructure. If you have a fairly distributed topology, for example, many remote locations, you will want to design a solution or look for a product that has a distributed architecture that can retrieve/receive logs in a distributed manner and forward logs back to a central location for analysis and archival.
- Jian
Posted October 24, 2005 in Log Management & Intelligence | Permalink
TrackBack
TrackBack URL for this entry:
http://www.loglogic.com/mt/mt-tb.cgi/13
November 2007
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | ||||
| 4 | 5 | 6 | 7 | 8 | 9 | 10 |
| 11 | 12 | 13 | 14 | 15 | 16 | 17 |
| 18 | 19 | 20 | 21 | 22 | 23 | 24 |
| 25 | 26 | 27 | 28 | 29 | 30 |
Categories
Archives
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005