Acreto Wedge Logs
Acreto Wedge Logs Introduction
Acreto Wedge features a comprehensive logs panel that aggregates log data with real-time viewing capabilities, along with advanced sorting and filtering options. To access the logs, simply log in to Wedge, scroll down the left-hand menu, and click on Logs.
This section is organized into views based on the type of assets generating the logs:
- All: This view displays all logs generated by various components of the ecosystem.
- Traffic: This view shows logs related to network traffic.
- Gateways: This view collects logs from all gateways within the ecosystem.
- Users and Things: This section includes logs related to user and device activity, such as VPN connections, MFA events, and user login issues.
- VPN Connections: This view provides information on the status of all connected users and their VPN connections.
Search and Filter the Logs
All views, except for VPN Connections, offer the ability to search and filter logs. The search bar, located at the top of the screen, enables flexible and detailed filtering based on all elements contained within the logs.
To search, click on the search field, select the desired value, choose an operator, and enter the search term. You can combine multiple search criteria to narrow down the results, as shown in the example below.
Once you select any value, the results will update instantly. You can remove any search criteria at any time by clicking the X button next to it.
Live View or Freeze
The logs view also provides the option to freeze the logs in place for closer inspection, or to choose an auto-refresh interval to monitor the real-time data flow. This setting can be adjusted at any time by clicking the list and selecting your preferred option.
Sumamry
Summary: Acreto Wedge Logs
The Acreto Wedge Logs panel offers a powerful interface for monitoring and managing logs in real-time. Accessible through the left-hand menu after logging into Wedge, the logs panel includes multiple views based on different assets generating the logs, such as All, Traffic, Gateways, Users and Things, and VPN Connections.
Users can take advantage of advanced search and filtering options to quickly narrow down log results by selecting specific values, operators, and search terms. The results update instantly and can be modified as needed. The platform also offers a Live View feature, allowing users to freeze logs for detailed inspection or set an auto-refresh interval to monitor real-time data flow. These features provide flexibility and ease of use for administrators looking to manage and analyze log data efficiently.
SIEM and CEF integration
Introduction to Logging and Integration with SIEM
Logs are the most straightforward and most essential tool for any service. They allow administrators to maintain health, security, and performance. Monitoring, troubleshooting, and threat detection may not be possible without them. Our platform offers robust logging capabilities that allow you to capture detailed event data, analyze it for meaningful insights, and integrate it with robust storage systems like Ceph for scalability and durability.
This section will explain the types of logs we collect and the essential functionality for using logs on the platform.
In this section:
