Open for Voting
over 1 year ago

Ability to Control Log/Event Retention

Ability to delete logs after 3, 6, or 12 months.

Ability to delete logs per type at different intervals.  For example, keep failed logons for a year, but IIS logs for 6 months.

  • 2 and a half years....  bump  :-)

  • I used to use LogLogic and they allowed retention based on "type" of log, such as ASA or router or Routing protocol.  This is something that I feel is important because many logs are for troubleshooting only and retention over a week is a waste of space. 

    Loglogic just had a simple page with checkboxes  and timeframes that would translate to a query that would run nightly and delete items older based on the criteria....