On Mon, Mar 18, 2002 at 03:55:11PM -0500, Drew wrote: > Personally, I've never understood why there wasn't more of an > event generator vice a simple collector. What I mean is, the > CP solution ( as I understand it ) simply collects and forwards > to a central host on the customer network, and from there to > their own Ops center. Wouln't it be nicer if there was agent > software for both *ix and Win32 that not only forwarded data > (preferably encrypted) but also expanded the ability to generate > events. Something that monitored ports and possibly the system in > a finer way than general syslog/windows events. There are many products that do things like this--host IDS apps like ZoneAlarm, for example, monitor ports and generate events, while active agents like the Concord SystemEDGE product do system monitoring and allow for SNMP monitoring/trapping. Any comprehensive system management setup should be collating info from local agents like these, on both the servers and the network infrastructure (most of which have vendor-provided management agents), along with general network management agents (like network IDSes). -- Sweth. -- Sweth Chandramouli ; <svcat_private> President, Idiopathic Systems Consulting --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Mon Mar 18 2002 - 19:09:59 PST