Use Case: End-Point Log Management With Syslog-Ng

Deploying a robust log management solution on end-points can be challenging. Monitoring remote end-points introduces more complexity to log management as remote connections can be unreliable, lack bandwidth and are often insecure. Most log collection tools and agents shipped with SIEMs lack the ability to ensure the confidentiality and integrity of the messages while they’re transferred to the central log server. Moreover, most collection tools only support a narrow range of OS platforms and cannot be deployed as a comprehensive solution in complex IT environments.

Read this brief use case to see how you can overcome these challenges with syslog-ng:
• Meet the requirements of complex environments
• Get reliable performance with TCP protocol support
• Analyze end-point event logs before they enter the network