SIEM 7.7.2 Patch 2 - Event Retention

  • 0
  • 1
  • Question
  • Updated 5 years ago
I have multiple devices configured to send logs to my server logs (SIEM) and I need to keep all these logs of my devices for 2 years, for query and reports futures.I have the following devices with diferent tecnologies: routers, switches, firewalls, to send logs to my SIEM and I have setup as attached image. 
How can I check this through CLI console?
Where and how stores these logs? 
Has SIEM created some structure?
Has SIEM created a Logs file per group?


Thanks for your help,
dicu
Photo of cos

cos

  • 212 Points 100 badge 2x thumb

Posted 5 years ago

  • 0
  • 1

Be the first to post a reply!