Any good log analysis software should be able to provide two different views: microscopic and telescopic.
Under a microscope, the user should be able to see all the nitty-gritty details of an event or incident. An event under a microscope should show details of the fields that makes up that event. For example, if you are [...]
Unfortunately I can’t remember where I found this quote, but it’s the best definition of Operational Intelligence I have seen:
Operational intelligence should be focused on patterns of activity, trends, and indications of future intentions.
If you know the original of the definition, please let me know.
More...Aside from the technical or operational mistakes mentioned in this article, there are also business mistakes that organizations can make in their implementation of the log analysis infrastructure/product.
Below are five common mistakes that are commonly seen in organizations.
1. Lack of clear understanding of the values
Return on Investment (ROI) is usually a metric organizations use to [...]
Many log analysis vendors have spent a lot of time trying to make their graphs and reports look flashy and colorful, does that really help you in understanding your logs better? Sure, they demo well. But some vendors are so obsessed about 3D graphs and other flashy aspects of the GUI that they miss the [...]
More...RDEP, or Remote Data Exchange Protocol, is a proprietary application-level communications protocol created by Cisco for their Secure IDS version 4 product. (Version 3 of the Cisco Secure IDS uses the Postoffice protocol, which is not covered here.)
RDEP is mainly a request/response protocol utilizing the HTTP/1.1 protocol. RDEP can run over both encrypted (TLS/SSL) [...]
Disclaimer: This is my personal blog. The opinions expressed in this blog are the views of the writer and do not necessarily reflect the views and opinions of VMware.