|
|
SNARE Server
The SNARE Server provides a dashboard view of all pertinent information from a corporation's heterogeneous network. It collects log files from a variety of operating systems, applications and appliances, as well as the SNARE Agents. These include, but are not limited to: Windows NT/2000/XP/2003, Solaris, AIX, Irix, Linux, Tru64, ACF2, CISCO Routers, CISCO PIX Firewall, CyberGuard Firewall, Checkpoint Firewall1, Gauntlet Firewall, Netgear Firewall, IPTables Firewall, Microsoft ISA Server, Microsoft IIS Server, Lotus Notes, Microsoft Proxy Server, Apache, Squid, Snort Network Intrusion Detection Sensors, IBM SOCKS Server, and Generic Syslog Data of any variety.
The benefits of the SNARE system are:
- Ability to collect any arbitrary log event
- Ability to collect large numbers of events – over 30,000 events per minute on a low-end Intel-based workstation
- Automatic archiving of events to compressed text, allowing optimization of database functionality
- Unique methods for administrators to ‘fine-tune’ reporting criteria
- Ability to create dynamic reports allowing reporting against any collection profile.
- Ability to use and filter event log collection methods with or without Snare Agents
- Annual maintenance includes access to all future Snare System upgrades and new versions
- Development of the Snare System is guided by its users – they use it daily and know what they need – and we can develop it for you and give you the skills to support all enhancements
- Unique and powerful forensic analysis tools used worldwide
- The only system that provides support to ‘Snare Agents’ anywhere in the world
- Pricing options that are more than competitive against the competition
- Experienced support team who have been working with ‘Event Log Management’ concepts longer than anyone else and whose tools are more widely used than any other Event Log Management tool worldwide
The SNARE System return on investment includes:
- Lower cost of labor through automation of reporting and critical event identification
- Less traffic on IT networks and systems – less overhead on your operating systems and less strain on your networks, reducing cost on maintenance, monitoring and support
- Capture event log data from any system using our own resources – not 3rd party – thus reducing cost
- Automation of audit and compliance functionality, using less resources
- Effective business continuity by providing a means to manage and lessen risk across the enterprise
- Instant methods of monitoring user activity and identifying suspect trends and events
- Effective utilization of your enterprise by allowing users to manage and monitor specific events for systems instead of investigating on a system to system basis
The SNARE Server is available in three base models
SNARE Server 600 (SS600): A 2U rackmount device, with 4 GB RAM, 3 x 200GB S-ATA drives (RAID 5, 400G usable space) and DVD writer. This system is preloaded with the application and allows collection up to 600 SNARE Agents and system log files, plus you get the added benefit of the Commercial SNARE Agents and a forensics/backup license.
SNARE Server 200 (SS200): A 2U rackmount device, with 4 GB RAM, 3 x 200GB S-ATA drives (RAID 5, 400G usable space) and DVD writer. This system is preloaded with the application and allows collection up to 200 SNARE Agents and system log files, plus you get the added benefit of the Commercial SNARE Agents and a forensics/backup license.
SNARE Server 50 (SS50): A 2U rackmount device, with 4 GB RAM, 3 x 200GB S-ATA drives (RAID 5, 400G usable space) and DVD writer. This system is preloaded with the application and allows collection up to 50 SNARE Agents and system log files.
The base models can be updated to collect additional devices, simply with a license key. Software only models are also available.
All models have mandatory maintenance programs and optional support is available. Contact us for more details.