The Hillstone Security Audit Platform is characterized by:
Log records provide visibility into network activity and help meet compliance regulations. But running log queries across millions of log records can take hours with traditional log management systems. Nevertheless, without effective log management, companies deny themselves the intelligence provided by their own environments and expose themselves to unbridled security events. Hillstone’s Security Audit Platform provides powerful, easy to use queries, which quickly provide instant visibility into millions of log records.
High Performance Log Processing
Large enterprises can generate up to 100 gigabytes of log data per day. Being able to scale to these data rates is an important aspect to log retention.
Hillstone’s Security Audit Platform supports standard syslog as well as a very high performance binary protocol that can receive up to 100,000 events per second from NAT traffic. It can dynamically scale storage to meet retention/compliance requirements via distributed load balancing or by sending specific logs to specific servers.
Hillstone’s Security Audit Platform allows users to easily create and save queries that run on demand or on a scheduled basis. It can search across source IP, destination IP, URL, public IP and time. In addition, Hillstone’s NAT logs can translate a public IP address into a private IP address/port and user name. This provides powerful forensic detail in environments that use NAT and need visibility into the private network.
Hillstone’s security audit platform supports Session logs, NAT logs, PBR logs in both IPv4 and IPv6 format. It gradually achieves a smooth transition from IPv4 to IPv6.