Versions Compared

Old Version 23

changes.mady.by.user Noga Aviram

Saved on

compared with

New Version Current

changes.mady.by.user Noga Aviram

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • General –  for setting the collection policy name and optionally providing a description for the usage of this customized/default collection policy

  • Logs – for selecting the logs that are collected into the XpoLog repository using this policy 

  • Collection Schedule – for defining the frequency of bringing data into XpoLog

  • Storage – for defining where to store the log data, the maximum disk space that the policy can use for collecting data, how long to keep files in the storage to be available for searches before deleting them, and the email address of the administrator to notify when the maximum storage space is reached or if there is an error collecting data.

  • Archive – for defining the behavior of the archived data

  • Apptags – for security aspects it is optional to associate a collection policy with group apptags.

  • Data Forwarding – for defining a forwarding policy that forwards data in parallel using one of the following methods: HTTP, Syslog TCP/UDP or XpoLog.

Storage: XpoLog (Indexed) Data is stored in a Binary, non readable format and can be read/ decrypted only by XpoLog. In case data is being tampered, XpoLog immediately alerts on the issue.
Archive: XpoLog archived Data is stored in compressed flat files. XpoLog runs a standard checksum (SHA-1/256/MD5) on the archive repository. In case data is being tampered, XpoLog immediately alerts on the issue.

To define a new Log Collection Policy:

  1. Click on Manager pane, the Left Navigation Panel opens. select Data > Collection Policies
    The Collection Policies console opens. The available options are: Add New Collection Policy | Edit | Duplicate | Delete.

  2. Click the New Collection Policy button.
    The Add new collection policy page opens.

  3. In Name, type the name of the Collection Policy.

  4. In Description, type a short description of the Collection Policy.

  5. In Logs, select the Collection Policy members. Use the checkbox and select the Folders and logs that will be associated with the new collection policy.

  6. In Storage, define the Collection Policy storage criteria. See Defining the Collection Policy Storage Criteria section below.

  7. Define the archiving policy and security of the Collection Policy. See Defining Archiving below.

  8. Click Save
    The Collection Policy is saved and can be used for adding logs and log directories.

...