Syslog Server

N.ima0102 · ‎05-14-2012

Hi

Which Syslog server do you suggest for collecting syslog message in network ? on internet there are many and many syslog server and all of them claim their product is the best for all needs and in entreprise level.

So I had to create this discussion on some forums included Cisco Support in order get feedback from Network administrators in every level,small,medium and enterprise.

Thanks for any suggestion and recommandation.

caniculari · ‎05-14-2012

At my experience in a small enviroment it's enough with the syslog daemon of UNIX or GNU/Linux. The main advantage is it's free and easy to configure. Could be hard to see the particular messages at the beginning, but with a little practice with the shell, it's very powerful like Cisco's CLI.

cflory · ‎05-14-2012

I agree with Luis, and would prefer a UNIX derivative, but if you're looking for something that's GUI driven and that may need to run on Windows, Kiwi makes a good product:

http://www.kiwisyslog.com/

-Chris

HTH!

N.ima0102 · ‎05-14-2012

Thanks for your attention.

For enterprise network which syslog server do you suggest?

Thanks in advance

Sent from Cisco Technical Support iPad App

jamescox3 · ‎05-14-2012

For the enterprise I really like Solarwinds Network Performance Monitor, AKA NPM. While the syslog is only one feature of the product it is easy to use and search since it's all web based. You can also set alerts on syslog events that can email you of problems.

Check out the other features that NPM has, very helpful reporting and alerting tools.

Jan Hrnko · ‎05-14-2012

Hi Nima,

you could take a look at this:

http://www.balabit.com/network-security/syslog-ng/opensource-logging-system/overview

It is an open source solution (for Linux), pretty good I think.

Best regards,

Jan

Clayton Dukes · ‎05-14-2012

Hi,

LogZilla (http://www.logzilla.pro) was purpose-built for Cisco-based networks. The author also happens to be a Cisco employee :-)