Search
Close this search box.

SRAN METALOG

High Performance Log Management System This system is designed for storing and collecting computer traffic data (log files), providing high performance in both storage and search capabilities within a single machine. It can seamlessly integrate with SIEM (Security Information and Event Management) systems and supports both Windows and Linux operating systems.

Differences from General Log Management Systems

Powerful High Performance

Designed to handle large log files from multiple sources with superior performance, capable of processing vast amounts of data efficiently.

Log Collection

Collects data from a variety of sources, including network device logs, endpoint logs from Windows and Linux agents, as well as application logs. Supports logs in both Syslog formats (RFC5424, RFC3164) and non-Syslog formats, ensuring comprehensive log collection across all systems.

Log Archiving

Capable of storing large log files using advanced file compression technologies like LZMA and ZSTD to reduce the original file size. This minimizes hard disk space usage while maintaining high data security through encryption, making it ideal for storing sensitive organizational data, both Syslog and non-Syslog. Supports storage from network devices, databases, and critical applications.

Filter and Forward

Includes the ability to filter log messages, content, and fields, allowing for selective forwarding to SIEM systems or AI systems for further analysis.

Full Text Search

Supports dynamic full-text search using LINQ Expression Language and Event Query Language, providing powerful search capabilities across all stored logs.

Fast Log Search

Offers rapid log search capabilities, even with large log files, ensuring that searches are quick and efficient. The dashboard provides real-time visualization of the current situation, including the number of logs per source, overall usage metrics, events per second (EPS) rates, and resource usage such as RAM and CPU, giving users immediate insights into system performance.

SRAN METALOG

Specific Features

1. MEGA Traffic

Supports handling of large data volumes, ranging from 10,000 to 1,000,000 events per second (EPS). Capable of logging and searching data collected from both network sources and hosts.

2. Intelligent Compressed

Uses Adaptive Compression Algorithm technology for log archiving, optimizing storage efficiency through advanced data compression techniques.

3. Fast Search

Can open and search large files within seconds, providing quick access to information even from extensive datasets.

4. Real Time Data Logs

Capable of advanced log file reception with configurable settings for Initial Buffer Size, Minimum Buffer Size, and Maximum Buffer Size. The memory buffer size adjusts automatically based on log traffic volume, starting from the initial setting and scaling up or down as needed, without exceeding the maximum or dropping below the minimum.

5. Access Rights Management

Supports Role-Based Access Control (RBAC) for managing access to system settings, user management, log inspection, and device statistics. Log archiving is managed with a Storage Selection Algorithm, and the system can connect to external devices. Additionally, SSL certificate configuration enhances security for data transmission across cloud systems and networks.

6. Agent Support for Log Collection

Supports the installation of agents to collect log data from various sources, including Linux Audit Logs, Log Files, RFC5424, RFC3126, Non-Syslog formats, and Windows Event Logs.

Specific Features