Help Document

Prerequisites for Log360 Cloud Agent

This document lists the prerequisites that have to be met to run the Log360 Cloud agent.

Required ports

The Log360 Cloud Agent requires the following ports to communicate with the cloud application server and to listen to the syslogs.

Port Numbers Ports Usage Description
8080 & 443 (TCP) Communication with cloud server These are the default ports used by the Log360 Cloud agent to communicate with the cloud application server.
513, 514 (UDP) Syslog listener port These are the default Syslog listener ports for UDP. Ensure that the devices are configured to send Syslogs to any one of these ports.
514 (TCP) Syslog listener port This is the default Syslog listener port for TCP. Ensure that devices are configured to send Syslogs to this port.

Log360 Cloud Agent and devices in your network use the following ports for WMI, RPC, and DCOM services.

Port Numbers Ports Usage Description
135, 445, 139 (TCP) WMI, DCOM, RPC These are the traffic ports for the Log360 Cloud agent. The same ports will be used as incoming traffic ports in the devices and must be opened. Windows services DCOM, WMI, and RPC use these ports, while Log360 Cloud agent uses these services to collect logs from Windows machines in default mode (Event Log mode).
49152-65534 (TCP) WMI, DCOM, RPC These are the incoming traffic ports in the Log360 Cloud agent. The same ports will be used as outgoing traffic ports in the devices and must be opened. DCOM uses callback mechanism on random ports between 49152-65534 for Windows Server 2008 and 1024-65534 for previous versions.

Hardware Requirements

This section gives you information about the hardware requirements for the Log360 Cloud agent.

For 32 bit machines

  • 1 GHz, 32-bit (x86) Pentium Dual Core processor or equivalent
  • 2 GB RAM

For 64 bit machines

  • 2.80 GHz, 64-bit (x64) Xeon® LV processor or equivalent
  • 2 GB RAM

Operating System Requirements

The Log360 Cloud agent can be installed and run on the following operating systems (both 32 Bit and 64 Bit architecture) and versions:

Windows®

  • Windows Server 2019
  • Windows Server 2016
  • Windows Server 2012
  • Windows Server 2008
  • Windows Server 2003
  • Windows 10
  • Windows 8
  • Windows 7
  • Windows 2000

VMware

  • VMware environment

Supported Logs and Data Sources

Log360 Cloud can collect, index, analyze, search, and report on logs from various devices, platforms and services. To know the latest supported logs and data sources, click here.

Note:

  • For analyzing logs from Windows NT machine, WMI core should be installed on the Windows NT machine.
  • Syslogs received from SNARE agents for Windows will be displayed as Windows devices.

RAM Requirement Approximation

The recommended RAM size of the machine in which the Log360 Cloud agent has been installed is 1 GB.

URL whitelisting

The following URLs have to be whitelisted in all the devices that have the Log360 Cloud agents for the agents to function effectively:

For the US region:

  • log360cloud.manageengine.com
  • upload.zoho.com
  • *dms.zoho.com
  • staticdownloads-log360cloud.zohodl.com

For the EU region:

  • log360cloud.manageengine.eu
  • upload.zoho.eu
  • *dms.zoho.eu
  • staticdownloads-log360cloud.zohodl.com

For the AU region:

  • log360cloud.manageengine.com.au
  • upload.zoho.com.au
  • *dms.zoho.com.au
  • staticdownloads-log360cloud.zohodl.com

© 2023 Zoho Corporation Pvt. Ltd. All rights reserved.