Collect and archive logs with Kiwi Syslog Server NG
Stay on top of your IT environment with simplified log collection
When every device on your network generates hundreds of logs each minute, collecting, managing, and archiving them can be a needlessly time-consuming and complicated process. Reviewing countless incoming log messages system by system is a nearly impossible feat, which is why network and systems engineers turn to SolarWinds® Kiwi Syslog® Server NG and its single, user-friendly console.
With Kiwi Syslog Server’s help, you can easily collect and manage syslog messages and SNMP traps from switches, servers, firewalls, and routers across your network, whether they’re from UNIX, Linux, or Windows systems. Kiwi Syslog Server simplifies the log aggregation process, saving you time and frustration. You can then filter and view your log messages according to their severity, hostname, or time, so you can find any critical messages quickly.
Save time with log archiving automation
By taking advantage of Kiwi Syslog Server’s log archiving automation functionality, you can fulfill retention policies to assist with compliance with regulatory standards. Not only will using Kiwi Syslog Server’s automated log archiving abilities help you save time, but it can also help ensure accuracy in the log archival and retention process.
Store and archive logs to assist with regulatory compliance
Storing log data for a certain period of time is likely part of your organization's retention policy. In addition to ensuring that you have the necessary documents for audits available and easily accessible, retention policies are often responsible for making sure that your organization is compliant with various regulatory standards, like HIPAA, SOX, and PCI DSS. Neglecting to meet regulatory compliance requirements can result in serious consequences, so log collection and log file storage should be top priorities.
With Kiwi Syslog Server's help, you can automate your log archival and retention process to help you demonstrate regulatory compliance. For example, you can store files you don't need for current analysis or archive log files with Kiwi Syslog Server. Kiwi Syslog Server offers increased accuracy when archiving logs while also saving you valuable time.
Forward logs to improve log archiving and network security
In addition to archiving logs with Kiwi Syslog Server, you can forward syslog messages and SNMP traps to other SolarWinds products, such as Papertrail™, Loggly®, Network Performance Monitor (NPM), and Security Event Manager (SEM), for storage, monitoring, analysis, threat detection, or real-time event correlation.
Kiwi Syslog Server can also forward SNMP traps and syslog messages collected from across your IT infrastructure to syslog hosts to external security and event management (SIEM) and network management systems, which can help you improve your network’s security.
Avoid losing messages thanks to syslog buffering
Typically, your processing engine won’t need to queue any messages, as it can keep up with the stream of incoming messages. However, during peak hours, your processing engine may become overwhelmed by the sheer amount of incoming messages and be unable to process them as they arrive.
In this situation, messages are added to a queue before being processed in the order they arrived. Kiwi Syslog Server NG has no default buffer size and its ability to buffer and process messages depends purely on the available RAM of the hardware it’s installed on. This approach helps ensure that incoming logs are stored and none are lost, helping you with your compliance requirements.
Get More on Log Collection
How can I improve log collection by using filters and defining rules?
Use filters and define rules to get the most out of Kiwi Syslog Server and improve log collection. By offering the ability to define up to 100 rules, as well as 100 filters and actions per rule, Kiwi Syslog Server enables you to collect, process, and respond to logs based on your needs. For example, Kiwi Syslog Server can run scripts, display a message, play a sound, send an email, pager message, or SMS message, reset counters, or send an SNMP trap in response to a log. It can even simplify log file storage by logging messages that pass through a rule's filters to a file, Loggly, Papertrail, or Kiwi Server Web Access.
Kiwi Syslog Server’s rules are highly customizable. Just set filters and actions to determine which messages trigger which actions. Neglecting to add filters will result in every incoming message triggering an action, so creating and applying filters to your rules is essential.
Kiwi Syslog Server can determine which messages will trigger actions based on their priority, IP address, text, input source, time of day, and hostname. Make sure to apply rules and filters in the order you’d like Kiwi Syslog Server to process them, as Kiwi Syslog Server starts comparing messages to rules and filters at the top.
What kinds of regulations does Kiwi Syslog Server help me demonstrate?
Kiwi Syslog Server is capable of collecting logs from IPv4 and IPv6 devices and handling up to two million syslog messages each hour. It also offers advanced log archival and clean-up features, making it an ideal syslog collection tool for organizations that must demonstrate compliance with various regulations. Kiwi Syslog Server can help you demonstrate compliance with SOX, FISMA, HIPAA, and PCI DSS regulations, as well as many others.
Not only can you use Kiwi Syslog Server to log incoming syslog messages to files, disks, the Windows event log, and databases that are compliant with ODBC, but you can also schedule automated log archival and clean-up tasks. This can help simplify the process of implementing your log retention policy and meeting compliance requirements. You can even use the integrated scheduler to schedule the compression, encryption, movement, renaming, and deletion of collected logs.
How can I create a scheduled task to archive log files?
Creating a scheduled task to archive log files will help you save disk space and save you valuable time. By carefully configuring Kiwi Syslog Server, you can help ensure specific log files are archived, moved, compressed, and encrypted when you no longer need them for troubleshooting.
To archive syslog messages, click File, then Setup in the Kiwi Syslog Service Manager. Then, click Schedules and Add a new schedule before adding a descriptive name. Choose Archive as the Task Type and specify when the archive task will run. If you want the task to run on a schedule, choose On a schedule and add any exceptions, the start date, end date, and frequency. If you prefer that the task runs every time you stop or start Kiwi Syslog Server, choose On app/service shutdown or On app/service startup.
Then specify where Kiwi Syslog Server can find the files to be archived under Source location on the Source tab and indicate which files will be archived under Source files. On the Destination tab, you can specify the destination folder and whether you want to copy or move the files. Choose Zip files after moving/copying and pick a compression level and method under the Archive Options tab to compress archived files. You can also specify encryption properties by selecting Encrypt zip files. To save your changes, click Apply.
How does log collection work in Kiwi Syslog Server?
Designed to streamline log message management, SolarWinds Kiwi Syslog Server can collect syslog data from an unlimited number of IPv4 and IPv6 devices. With Kiwi Syslog Server’s help, you can monitor and manage your network’s servers and devices from a central location. As long as a device is syslog-capable, Kiwi Syslog Server will listen for UDP messages on port 514 (though you can easily configure Kiwi Syslog Server to listen for UDP messages on a different port or to listen for TCP messages, secure TCP messages, or SNMP traps instead of UDP messages). However, Kiwi Syslog Server goes beyond log collection and log aggregation.
This affordable and user-friendly syslog collection, monitoring, and management tool features an intuitive web console where you can easily view and filter through collected logs, enabling you to make the most of your logs and the information they contain. Kiwi Syslog Server also offers built-in automatic responses, customizable log display views, the ability to generate graphs of syslog statistics, and more.
Kiwi Syslog Server is also equipped with advanced alert functionality, so you’ll receive an email, instant message, SMS message, or pager message when a log message fits your predefined criteria, such as time, type, or syslog source. With the help of Kiwi Syslog Server’s advanced syslog alerting, you can troubleshoot issues faster or stop problems before they impact your organization.
Regulatory requirements often include retaining logs for a period. When you no longer need collected logs close at hand, take advantage of Kiwi Syslog Server’s scheduled log archival and clean-up functionality. For example, you can schedule an archive task to run, and Kiwi Syslog Server will move or copy your files to a different location. If the required log retention period is over and you want to delete older files, schedule a clean-up task to run at regular intervals. Specify that files older than the log retention period should be deleted each time the clean-up task runs.
Kiwi Syslog Server simplifies and centralizes log collection and management, enabling you to view and understand your logs so you can stay on top of the health and performance of your network’s devices and servers.
- How can I improve log collection by using filters and defining rules?
- What kinds of regulations does Kiwi Syslog Server help me demonstrate?
- How can I create a scheduled task to archive log files?
- How does log collection work in Kiwi Syslog Server?
How can I improve log collection by using filters and defining rules?
Use filters and define rules to get the most out of Kiwi Syslog Server and improve log collection. By offering the ability to define up to 100 rules, as well as 100 filters and actions per rule, Kiwi Syslog Server enables you to collect, process, and respond to logs based on your needs. For example, Kiwi Syslog Server can run scripts, display a message, play a sound, send an email, pager message, or SMS message, reset counters, or send an SNMP trap in response to a log. It can even simplify log file storage by logging messages that pass through a rule's filters to a file, Loggly, Papertrail, or Kiwi Server Web Access.
Kiwi Syslog Server’s rules are highly customizable. Just set filters and actions to determine which messages trigger which actions. Neglecting to add filters will result in every incoming message triggering an action, so creating and applying filters to your rules is essential.
Kiwi Syslog Server can determine which messages will trigger actions based on their priority, IP address, text, input source, time of day, and hostname. Make sure to apply rules and filters in the order you’d like Kiwi Syslog Server to process them, as Kiwi Syslog Server starts comparing messages to rules and filters at the top.
With the Kiwi Syslog Server software, we are able to discover, research, and rectify reported errors much quicker than we were able to before.
Application Engineer
Large Enterprise Media & Entertainment Company
Centralized and simplified log collection and archiving
Kiwi Syslog Server NG
Stay on top of your IT environment and improve security
Store and archive logs to assist with regulatory compliance
Automatically archive logs to save time
Only $359 for unlimited devices
No monthly fees
