Events are cowards, they attack in force: How to cope with insane log volumes
From Best Practices
This page will be (surprise) a best practices conversation on effective enterprise log management.
Specific areas:
Collection and storage
- Effective aggregation and transport - UDP, TCP, and the little white rabbit.
- Retention policies
Using logged events in network monitoring and real-time operations
- Log analyzers - Your BGP peer just dropped. Who's going to know first, you or your customer?
- Reporting
