NXLog Enterprise Edition - serving your event data collection needs
The NXLog Enterprise Edition is a high-performance multi-platform log collection solution aimed at solving these tasks and doing it with a single tool.
Avoid vendor lock-in - integrate with any SIEM
Ability to feed multiple systems
Can be used as a Windows Event Collector both Linux and Windows to collect WEF remotely
Collect and parse Microsoft IIS logs
Full coverage for Microsoft Exchange logs
Full Windows DNS server log collection support - collect via ETW or parse the DNS log file
Pull data from Windows Performance counters
Passive network monitor module for Windows
To see all Windows logging features, click here
Signed installer packages
Employs flow control to ensure disruptions do not cause data loss even without buffering.
Supports message buffering and disk based queues.
Compression over the wire to reduce network traffic
Full TLS/SSL support for encrypted data transfer
Failover support
Provides a SOAP/XML and JSON REST API for remote management
Centralized monitoring and management using NXLog Manager or via command line scripts
Firewall-friendly - management connections can be agent initiated or manager initiated.
Monitor the agent's health and data collection statistics
Agent side enrichment, filtering, pattern matching, log format conversion, message rewrite
Simple and powerful configuration syntax
Built-in log rotation and retention
Read multiple log sources simultaneously with a single service
Support for different encodings
Send to more than one destination if needed
ID resolution for better readability of log events
Can be configured to act as a collector agent, log server, or log relay and supports hybrid modes
The ideal tool to collect and centralize log data
No extra dependencies required. It does not use Java runtime, python interpreter and runs as native code
Blazingly fast, scalable
Can handle thousands of connections in server mode
Lightweight with a low memory footprint of a few megabytes
Improved feature to read and write compressed files
Network packet capture support
CEF, LEEF, XML, JSON, CSV, KVP, W3C, Syslog, Checkpoint OPSEC, SDEE, SNMP, NetFlow, Windows Eventlog, Multi-line data, custom formats and IPv6 support
Designed with structured data in mind. Most other log collectors are still Syslog based while NXLog embraces structured logging to alleviate the need for writing parsers
Detect changes to files and directories on all supported platforms
Can also monitor the Windows registry for changes
Protocol parser for BACNET
Improved handling of complex data in MODBUS packets
Protocol parser for PROFINET
Shipping individually signed packages on Debian
Collect logs from major ICS solutions (Schneider Electric Citect SCADA & Siemens SIMATIC PCS 7)
Regular hot fixes
There are security flaws discovered every other day that need attention. OS upgrades may break your log management system. Adding some new log sources can be a challenge.
Unlike the NXLog Community Edition, which is a volunteer effort, the NXLog Enterprise Edition receives regular hot-fixes and enhancements. You and your organization can feel a lot safer, especially with the NXLog Enterprise Support subscription.
