Syslog-ng

Enterprise class log management, highly scalable, secure log delivery and control.

SIEM Optimisation with Syslog-ng

A security incident event management platform is the heart of your organisations network security platform. Syslog-ng helps enterprises to optimise, control, secure and guarantee delivery of syslog event messages to your SIEM, or storage platform of choice be it Splunk, QRadar, LogRhythm, Elastic, Alientvault or any other syslog event management tool.

REAL-TIME LOG TRANSFORMATION: OPTIMISE YOUR TOOLS & REDUCE COSTS WITH DISTRIBUTED PROCESSING

Transform your logging environment by reducing the volume and complexity of log data forwarded to analytic tools such as SIEM or APM drastically reducing volume based licensing costs of your SIEM tools. Filter, parse and re-write messages, strip unnecessary human readable content all reducing complexity and storage/licensing requirement ultimately reducing spend whilst increasing efficiency.

syslog ng siem service map
syslog ng encrpted syslog architecture
SECURE TRANSFER AND STORAGE

Using local disk buffering, client-side failover and application layer acknowledgement Syslog-ng can transfer logs with zero loss. Encrypted transfer and storage ensures logs cant be tampered with. Premium Edition can send and receive log messages reliably over TCP using the Reliable Log Transfer Protocol RLTP. RLTP prevents message loss during connection breaks

PRODUCT COMPARISON

syslog ng model variation
syslog ng ssb store box overview

SYSLOG-NG STORE BOX (SSB) ADDS GUI & ENHANCED INDEXING, SEARCHING AND REPORTING

A physical or virtual appliance that adds builds upon the strengths of Premium Edition, offering the ability to search logs, secure sensitive information with granular access policies and generate reports for compliance requirements. All of this, in an exclusive web based UI which is not available in the Premium Edition.

contact us to discuss your requirements

With Iris Networks, you’re in safe hands.