Hector Aguilar Director, Connector Development May 2006

Slides:



Advertisements
Similar presentations
Corporate Property Automated Information System (CPAIS) Macro Walkthrough Guide for Excel Version 2003.
Advertisements

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.
High Speed Data Converter University
Improving Efficiency of I/O Bound Systems More Memory, Better Caching Newer and Faster Disk Drives Set Object Access (SETOBJACC) Reorganize (RGZPFM) w/
PDA Program Install Manual IT Team. 1. Execute Internet Explorer 2. Connect Website 3. Download 4. Installation 5. Run 6. Setting 1. Execute.
Maximizing Windows 7 Performance: Troubleshooting Tips Johan Arwidmark Chief Technical Architect Knowledge Factory WCL327.
Process Control Management Prepared by: Dhason Operating Systems.
Troubleshooting Exchange Transport Service Miha Pihler MVP – Enterprise Security Microsoft Certified Master | Exchange 2010.
Lindsey Velez, Director of Instructional Technology Single Sign-On One Click.
Environment Manager Troubleshooting and Debugging.
111 State Management Beginning ASP.NET in C# and VB Chapter 4 Pages
Windows Server 2003 { First Steps and Administration} Benedikt Riedel MCSE + Messaging
1 Adding a Model. We have created an MVC web app project Added a controller class. Added a view class. Next we will add some classes for managing movies.
Developing annotation based monitoring framework Fedor Romanov, TomTom.
DFR Downloader Theo Laughner, PE Presented at GPA User Forum August 5, 2015.
SQL Database Management
SoftLogica Inc A load testing solution for web applications
Information Retrieval in Practice
Getting & Running EdgeX Docker Containers
Integrating ArcSight with Enterprise Ticketing Systems
Meeting Housekeeping/Highlights
Appendix A Barb Ericson Georgia Institute of Technology May 2006
Data Virtualization Demoette… Logging in CIS
ANALYTICS 102 WEBINAR Presented by: Dominik Dietz.
Ryan Cantor, MSPH Director of Statistical Reporting, Intermacs
Refworks Part I.
BizTalk Throttling and Threshold
Appendix A Barb Ericson Georgia Institute of Technology May 2006
Using Jabber in Global Offices
SAS Enterprise Guide & SAS Visual Analytics Interactions
MCTS Guide to Microsoft Windows 7
TOPIC 6: SYSTEM START-UP AND CONFIGURATION
Social Network Website for USEP
View this as a Slide Show to see the animations on selected slides.
On the road: Test automation in practice for a BMW map update service
Automation System (OPAC) Tutorial
Deploying and Configuring SSIS Packages
Intro to Processes CSSE 332 Operating Systems
Back To The Basics Optimizing System Parameters
Volume Licensing Download Center
Making the Most of the Ellucian Support Center
Automated Code Coverage Analysis
Confidential – Oracle Internal/Restricted/Highly Restricted
Introduction to Alice Alice is named in honor of
Making your good ideas count!
OpenWorld 2018 Oracle E-Business Suite Analyzer Diagnostic:
What is Cookie? Cookie is small information stored in text file on user’s hard drive by web server. This information is later used by web browser to retrieve.
EBSCOhost Basic Searching for Academic Libraries
Using JDeveloper.
Quality & Performance for XAML Apps
Windows Phone application performance and optimization
Android Topics UI Thread and Limited processing resources
Prototype using PowerPoint
Introduction to Alice Alice is named in honor of
RAC Performance Lab.
3.1 Iteration Loops For … To … Next 18/01/2019.
CSC235 - Visual Studio Tutorial
XML Parsing I have to analyze over 300 XML files. The xml2csy.py can’t be used to call multiple files at time as per our previous communication. I am thinking.
PowerApps and Flow.
Chapter 9: Managing Groups, Folders, Files, and Object Security
Analyzing Performance Problems Using XEvents, DMVs & Query Store
Mapping a network drive
Training for Aurora Public Schools Users
Download the My Learning App
SeeSoft A Visualization Tool..
Performance Tuning ETL Process
Registering your returning student at Moody ISD
Workshop for Programming And Systems Management Teachers
Analyzing Performance Problems Using XEvents, DMVs & Query Store
Presentation transcript:

Hector Aguilar Director, Connector Development May 2006 What is the “Logfu”? Hector Aguilar Director, Connector Development May 2006 © 2006 ArcSight Confidential

What is the “Logfu”? My Kung-Fu is better than your Kung-Fu! My Code-Fu is better than your Code-Fu! . I can analyze logs better than you can. My Logfu is better than your Logfu! © 2006 ArcSight Confidential

What is the Agent “Logfu”? Logfu is an application that reads and parses ArcSight logs to generate a visual representation of the information contained in them Logfu can be used for Manager and Connectors. This presentation will focus on the Connector Logfu The Connector Logfu generates an interactive visual representation of the information contained in the logs This presentation will show how to navigate using Logfu to analyze connector event flow issues © 2006 ArcSight Confidential

© 2006 ArcSight Confidential FAQ About Logfu Who would use Logfu? Logfu can be used by people managing connectors on a daily basis, to analyze connector behavior Why would people use Logfu? When event flow problems happen related to the connector or to the device, it is very useful to have a visual representation of what happened overtime What do you need to run Logfu? You need any agent build Logfu is included with all connector builds and you can analyze logs from older (or newer) connectors © 2006 ArcSight Confidential

© 2006 ArcSight Confidential Starting Logfu Logfu will read the log files contained in the directory where it was run, so to execute it change to the /logs folder and run: C:\Program Files\ArcSightSmartAgents\current\logs>..\bin\arcsight agent logfu -a Logfu will start reading all the agent.log.* files and produce “data” files (data.agent.log.*) with optimized data and indexes that will be used to feed the interactive display © 2006 ArcSight Confidential

© 2006 ArcSight Confidential More about Logfu The “data” files can be used as a “cache” so that the analysis of the log files is done only once for multiple interactive sessions © 2006 ArcSight Confidential

© 2006 ArcSight Confidential More on Agent Logfu… When Logfu is run a second time, it will first check the blah, blah, blah, blah… Ok! Enough with the slides already! We want to see a demo!!!! © 2006 ArcSight Confidential

© 2006 ArcSight Confidential Ok, just one more slide… Things that Logfu can help you analyze Event-flow (Eps/Cache/Manager Throughput) Device database performance Memory consumption Name resolution Device activity (Event count) Errors/Exceptions Any counter logged Ok, so what are we going to see now? © 2006 ArcSight Confidential

© 2006 ArcSight Confidential Demo © 2006 ArcSight Confidential

© 2006 ArcSight Confidential Summary Logfu is a tool to visualize connector logs Can be used for troubleshooting event flow problems or simply analyze connector behavior A couple of suggestions Use Logfu to analyze the logs of your current agents Enter the Logfu contest! © 2006 ArcSight Confidential

© 2006 ArcSight Confidential Questions and Answers Download Slides https://support.arcsight.com More ArcSight Events http://www.arcsight.com Join the User Forum https://forum.arcsight.com © 2006 ArcSight Confidential

Maybe some Q&A? © 2006 ArcSight Confidential

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.