Archiving your network logs is a smart way to keep your data safe, but it's also an important part of running a secure business. If you don't archive your logs, you could miss crucial information about potential attacks on your network and its users.
In this article, I'll show you how to start archiving your network logs today. You'll learn the benefits of archiving and the steps that are involved in setting up an archive so that you can start protecting yourself from hackers now!
Collect your network logs for archival
You will need to collect your current network logs, which means capturing all of the traffic entering and leaving your network. You can use a tool such as Splunk or Stormeye to do this. You will then configure the tool so that it sends a copy of the captured data to your archive server via FTP each morning at 6 am. If you have more than one firewall in place, you'll need to set up multiple transfers—one for each firewall—so that all of them are sending their log files regularly (and not just every once in a while). To do this, follow these steps:
Configure the tools on every device through which traffic passes (for example, firewalls).
Confirm that they're running correctly by checking whether they've been installed correctly and have started receiving log files from machines within their range of influence.
If so, continue with Step 2 below; otherwise, go back and troubleshoot until you get things working properly before proceeding further into this guide!
Configure your network log storage.
To do this, you need to:
Configure a service that starts archiving your logs by clicking on the "Configure" button in the top right corner of the screen and choosing "Start Service".
Configure a service that starts storing your logs by clicking on "Configure" again and choosing "Start Service".
Configure a service that starts sending your logs to Stormeye.io by clicking on "Configure" yet again and choosing "Start Service".
Pick your storage size
You can choose to store your logs for 6 months or 1 year, 2 years or 3 years, 4 years or 5 years, 6 years or 7 years.
Pay for the service monthly
There are several different pricing tiers, and you will be billed monthly. The cost for the service is $99 per month and $2 for each GB of storage if you are over the starter limit. You can cancel the service at any time if you decide you no longer need it, or if your needs change.
Do I have to pay for storage?
If you exceed the starter limit, you will be charged $2 per GB of additional storage. The first 30 GB is free, and each subsequent 1 GB block will cost $2.
Get the service up and running
Once you have the service up and running, you can start using it. You will be able to access your logs and search them, download them as a file or in JSON format, or delete them if needed.
When you archive your logs, you can keep them for 6 months to fit your compliance requirement
As soon as you’re done with your logs, they can be stored in the cloud for up to six months. But if your compliance requirements are less strict, or if you just want to keep them for longer—forever?—you can do that too! You’re in control of what happens with these valuable records once you’ve archived them.
Conclusion
We hope that this post has helped you to start your network log archival now. If not, we can help you with the next steps: configuring your network log storage and picking a size that fits your needs. Get in touch with us today and let’s get started on your compliance journey!
Comments