Version:

Snare Collectors

You can use a Snare collector to collect and analyze logs from the Windows Snare agent or any other Syslog server forwarding data to the 6161 port.

  1. Go to Configure >> Built-in Collectors/Fetchers >> Snare Collectors.

  2. Select the LogPoint instances where you want to configure the Snare collector.

  3. Click Next.

    ../_images/dc_configure_snare_collector_config.png

    Configuring the Snare Collector

  4. Select a Processing Policy and a Parser.

  5. Select an encoding format from the Charset drop-down.

  6. You can either configure the snare collector to a device or a log collection policy.

    • If you select Device, select all the devices where you want to configure the collector.

      Note

      For multiple LogPoint instances, you can select the devices common to the selected LogPoint instances only.

    • If you select Log Collection Policy, select all the log collection policies where you want to configure the collector.

  7. Click Next.

    ../_images/dc_configure_snare_collector_confirm.png

    Confirming the Changes

  8. Review your changes. You can go Back to make any changes if necessary.

    Note

    Click Download Report to save the summary of the task in PDF.

  9. Click Finish.

  10. Click OK.

Helpful?

We are glad this guide helped.


Please don't include any personal information in your comment

Contact Support