Products	Solutions	News	Resources	Partners	Company
Software ITM Core Event Manager Action Manager Event Reporter Metric Manager Inventory Manager Netflow Reporter Appliances Event Router Shareware CDP Shark	Verticals Service Providers Healthcare Enterprises Packages Monolith for Aggregation Security Event Manager	Monolith News Press Inquiries Press / Analyst Events	Testimonials Data Sheets White Papers Case Studies Product Downloads	Overview Locate a Partner Become a Partner Partner Portal	Company Overview Management Team Investors Careers Contact Us

Event Manager

Event Dashboards Gauge View Event List Forensic View Aggregators
Advantages

1. Out-of-the-Box De-duplication
2. Device Catalog Engine
3. Multi-tenancy
4. Rules based engine
5. Easy to Use
6. Pure Web-based Solution
7. Advanced Correlation Capabilities
8. Real-time & Forensic
9. Supports Windows & Linux
10. Java plug-in free
11. ActiveX plug-in free
12. Available Source
13. Auto-installation system
14. Single Code Base
15. High Availability

Benefits

1. Centralize Configuration
2. Operational Efficiency
3. Manager of Managers
4. Single Pane of Glass
5. No Device or Client Licensing
6. Application Grouping
7. Lower TCO than Competitors
8. Helps Reduce MTTRs
9. Increases Productivity
10. Highly Scalable

Data Sheet v3.1

Online Demo

Home > Products > Event Manager > Aggregators

Aggregators

(click to enlarge.)

Event Manager uses Aggregators to collect or receive event sources. These components are used to collect, normalize, enrich, and correlate events. They are modular in nature so that they can be deployed distributed for maximum redundancy and scalability.

Rules

The aggregators use rules to perform their functions. These are segmented into three types: Base, Includes, and Load rules files. The Base rules file is used to forking off the event processing into an include file; for example by vendor. The Include rules file is used by the base rules to add abstraction and layer the rules logic to make maintenance and understanding easier. The Load rules is used by the aggregator to pre-populate data constructs (arrays, hashes, etc) for the rules so that during event parsing the performance is increased by eliminating the need to connect to static external sources of data.

Aggregators

The following is a sample list of aggregators supported by Monolith

Syslogd -- UDP Port Standard Syslog Agent

Trapd -- SNMP Trap Receiver

FIFO -- Flat File/Log File Reader

PIPE -- Generic Command Reader

PIX -- UDP Port PIX Agent Reader

TL1 -- TCP Telnet Connector for standard TL1

CSIDS -- TCP Telnet Connector for Cisco Secure IDS

NNM -- SDK PMD Integration

Pingd -- Device Catalog Ping Poller

PgSQL -- PostgresSQL Integration

MySQL -- MySQL Integration

POP3 -- Email Connector

Nimbus -- SDK NAS Integration