|Centralized Log Management|

Simplify Event, Syslog and SNMP Trap Management with Logalot Security Center

Plixer is a leader in Security Information Management and Intrusion Protection. Our Logalot Security Information Management (SIM) / Security Event Management (SEM) architecture goes beyond progressive layered forensic analysis.

Collection, correlation and notification via our real-time console are only the beginning. Logalot is the tool to consider when auditing and reporting become important.

Logalot is not limited to the security needs:

	Security attacks from the internet and/or local area network
	Hardware failures such as disk arrays and network cards
	Operating system problems or complaints
	Many other reports as well

How Does It Work: Once Logalot is installed, administrators must configure the hardware to push messages (e.g. syslogs, SNMP traps, email, etc.) to the machine Logalot is configured on. If it is a Microsoft® server, Logalot can be configured to retrieve the events. Click here to learn more.

"Logalot is a great new addition for monitoring our network. Most of the time finding intermittent problems was difficult and time consuming. Logalot alerts me of the problem without having to manually check each system's log, something I don't have time to do. I can set alert thresholds on a policy and even build custom notifications with our existing external notification system. Logalot is a great tool and I can see a lot of value in using it."

- Central Maine Power

System Requirements: Logalot runs on Windows NT, 2000 and XP. Like most applications, when Logalot is expected to process dozens of entries per second it can become resource intensive. The system requirements really depend on the amount of devices and the volume of log/event data being transmitted to Logalot. Please contact Plixer directly for more information on sizing Logalot for your network.

MySQL Backend: The backend of Logalot uses MySQL. A completely open source architecture allows administrators to add their favorite tools to any Somix product.

Auto acknowledge alerts

Let Logalot acknowledge alerts when a problem is fixed
Logalot’s message correlation engine can be setup to Auto Clear alerts when a problem appears to have fixed itself.

Example: If the interface comes back up, Logalot will wait 4 minutes (definable) before clearing the alert from the Bulletin Board. Auto Acknowledging can be setup per device, interface or for any message.

Centralized Security Monitoring with Logalot
The Logalot architecture brings different messages from numerous security equipment and devices, such as servers, IDS, IPS, SNMP equipment and syslog capable hardware, into a single database framework. Then, it lends users a powerful correlation capability.

Follow the path of intruders
With Logalot, an event of interest can be followed from IP Source to destination. Then, the event can be correlated against other network traffic and data from other security devices, giving a comprehensive and realistic attack scenario in a single view.

The ability to track where a hacker entered your environment, where they went, what they touched, what was attempted, what was successful and what was not are crucial to the overall security posture.

Logalot integrates with Scrutinizer NetFlow & sFlow Analyzer

From the Logalot Bulletin Board, you can now put an icon and launch your favorite application (e.g. Scrutinizer shown below) for the selected host:

A list of our worldwide distributors and GSA contacts can be found here.

Home > Products > Logalot Event Manager