System Requirements
This section lists the minimum system requirements for installing and working with EventLog Analyzer.
Hardware Requirements
To install in 32 bit machine
The minimum hardware requirements for EventLog Analyzer to start running are listed below.
- 1 GHz, 32-bit (x86) Pentium Dual Core processor or equivalent
- 2 GB RAM
- 5 GB Hard disk space for the product
To install in 64 bit machine
The minimum hardware requirements for EventLog Analyzer to start running are listed below.
- 2.80 GHz, 64-bit (x64) Xeon® LV processor or equivalent
- 2 GB RAM
- 5 GB Hard disk space for the product
EventLog Analyzer is optimized for 1024x768 monitor resolution and above.
Operating System Requirements
EventLog Analyzer can be installed and run on the following operating systems (both 32 Bit and 64 Bit architecture) and versions:
Windows®
- Windows 2012 Server
- Windows 2008 Server
- Windows 2003 Server
- Windows 2000 Server
- Windows 8
- Windows 7
- Windows 2000
- Windows Vista
- Windows XP
- Windows NT
Linux
- Linux - RedHat RHEL
- Linux - Mandrake
- Linux - Mandriva
- Linux - SuSE
- Linux - Fedora
- Linux - CentOS
- Linux - Ubuntu
- Linux - Debian
VMware
Supported Web Browsers
EventLog Analyzer has been tested to support the following browsers and versions:
- Internet Explorer 8 and later
- Firefox 4 and later
- Chrome 8 and later
Supported Platforms & Devices
EventLog Analyzer can collect, index, analyze, archive, search, and report on any1 machine-generated logs. Ready-built* support is available for logs from the following operating systems and devices:
- Windows Server 2012
- Windows Server 2008 R2
- Windows Server 2008
- Windows Server 2003
- Windows Server 2000
- Windows 8
- Windows 7
- Windows 2000
- Windows Vista
- Windows XP
- Windows NT
- Linux - RedHat 9.0
- Linux - Mandrake
- Linux - Mandriva
- Linux - SuSE
- Linux - Fedora
- Linux - CentOS
- Linux - Ubuntu
- Linux - Debian
- UNIX - Solaris, HP-UX
- IBM AS/400 - Variants V5R1, V5R2, V5R3, V5R4, V5R5 and V6R1
- IBM AIX
- Cisco Switches and Routers
- VMWare - Syslog versions
- SNARE^ for Windows
Ready-built* support is available for logs from the following applications too:
- IIS W3C Web Server
- IIS W3C FTP Server
- Apache Web Server logs
- MS SQL Server
- Oracle 10 G Release 2 (10.2.0.3) - Audit Logs
- DHCP Windows Logs
- DHCP Linux Logs
- Print Server logs
|
Note:
1 – as long as the machine generated log is in human-readable format
* - With ‘Universal Log Parsing & Indexing’ technology, EventLog Analyzer also supports logs received from other machines or applications not listed above
# -For analyzing logs from Windows NT machine, WMI core should have been installed in the Windows NT machine
^ - Syslog’s received from SNARE agents for Windows will be displayed as Windows hosts |
RAM Size and Disk Space Requirement Approximation
The following table recommends the RAM size and disk space requirements of the machine in which the EventLog Analyzer is installed. The RAM size and disk space requirements depends on the number of host sending log information to EventLog Analyzer, the number of log records received per second or the log data received per day by EventLog Analyzer. The calculation is worked out for 100 hosts and an average log record size of 350 bytes.
Log Records Rate or Volume |
RAM Size |
Hard Disk Space Requirement Per Month to Archive Logs |
100/sec or 3 GB/day |
1 GB |
300 GB |
500/sec or 14 GB/day |
2 GB |
1440 GB |
1000/sec or 28 GB/day |
4 GB |
2880 GB |
Supported Databases
Bundled with the product
External Databases
- MS SQL 2000
- MS SQL 2005
- MS SQL 2008
- MS SQL 2012
PostgreSQL Performance Improvement Parameters (for EventLog Analyzer version 8.0 Build 8010 onwards)
For better performance, we recommend replacing the existing PostgreSQL parameters
mentioned in postgres_ext.txt available under <EventLog Analyzer Home>\pgsql\data\
directory
Parameters |
Comments |
port = 33336
|
This change requires EventLog Analyzer Appplication/Service restart |
shared_buffers = 128 MB
|
Minimum requirement is 128 KB. This change requires EventLog Analyzer Appplication/Service restart |
work_mem = 12 MB
|
Minimum requirement is 64 KB. |
maintenance_work_mem = 100 MB
|
Minimum requirement is 1 MB. |
checkpoint_segments = 15
|
Logfile segments minimum 1 and 16 MB each |
checkpoint_timeout = 11 minutes
|
Range: 30 seconds to 1 hour |
checkpoint_completion_target = 0.9
|
checkpoint target duration is 0.0 - 1.0 |
seq_page_cost = 1.0
|
This parameter is measured in an arbitrary scale |
random_page_cost = 2.0
|
This parameter is measured in same scale as above |
effective_cache_size = 512MB
|
|
| synchronous_commit=off |
|
MySQL Performance Improvement Parameters (for EventLog Analyzer version 8.0 Build 8000 or earlier)
For better performance, you can replace the existing MySQL parameters mentioned in startDB.bat/sh, available under <EventLog Analyzer Home>\bin directory, with the following MySQL parameter changes corresponding to the EventLog Analyzer servers RAM Size.
Hardware RAM Size |
MySQL Parameter Changes |
1 GB |
Default configuration as given in startDB.bat/sh |
2 GB |
" --innodb_buffer_pool_size=1200M " |
3 GB |
" --innodb_buffer_pool_size=1500M " |
4 GB |
" --innodb_buffer_pool_size=1500M " |
Recommended System Setup
Apart from the System Requirements, the following setup would ensure optimal EventLog Analyzer performance.
- Run EventLog Analyzer on a separate, dedicated PC or server. The software is resource-intensive, and a busy processor may cause problems to collect event logs
- Use the MySQL bundled with EventLog Analyzer that runs on port 33335. You need not start another separate instance of MySQL
- As mentioned in the pre-requisites, for better performance, you can modify the existing MySQL parameters
|
