HPE ArcSight Logger

HPE ArcSight Logger delivers industry-leading, cost-effective log management solution that unifies searching, reporting, alerting, and analysis across any type of enterprise machine data for IT GRC, IT Operations, SIEM, and Log Analytics. Its ability to collect, analyze, and store massive amounts of machine data generated by modern networks in various formats makes it a truly universal log management solution. It supports multiple deployment options such as an appliance, software, virtual machine, or within the cloud.

HPE ArcSight Logger collects information from any system that generates log data. It can process that information as much or as little as desired, and can produce ultra-fast searching across the data. As a result, organizations of any size can use this high performance log data repository to aid in faster forensic analysis of IT operations, application development, and cybersecurity issues, and to simultaneously address multiple regulations.

ArcSight Logger features:

  • Capture everything: raw log data as well as out of the box collection for more than 300 distinct sources.
  • Analyze anything: high performance interactive searches, comprehensive drill-down reports and real-time alerting.
  • Use anywhere: uniquely architected solution to meet the needs of diverse teams and use cases around security, compliance, IT operations and application development.

HPE ArcSight Logger Specifications

Model L750MB L5GB L3400 & L3400-PCI L7400-SAN L7400s L7400x
Software Availability Available as software ONLY Available as software ONLY Also available as software (L30GB) Available as hardware only Also available as software (L80GB) Also available as software (L80GB)
Management Web browser, CLI, Web Services API
Connector Management N/A N/A Yes N/A N/A N/A
Supported Sources Raw Syslog (TCP/UDP), Raw File based logs (FTP, SCP, SFTP) Analysis optimized collection using HPE ArcSight SmartConnectors FlexConnector framework for legacy event sources HPE ArcSight CEF (Common Event Format), HPE ArcSight ESM
OS Supported OS (software model): Red Hat Enterprise Linux, CentOS and Oracle Enterprise Linux Red Hat Enterprise Linux v5.5, 64-bit
Compression Up to 10:1
Devices 10 50 200 Unrestricted 500 Unrestricted
Max EPS 750 MB of logs/day 5 GB/day 2,000 75,000 5,000 100,000
Capacity 500GB 2.5TB 8TB 50TB 42TB
CPU N/A N/A 1 x Intel E5620, quad core, 2.4 GHz 2 x Intel Xeon E5504, quad core 2.0 GHz 2 x Intel E5620, quad core, 2.4 GHz
RAM N/A N/A 12GB 24GB
Storage N/A N/A 3 x .5TB — RAID 5 External – SAN 6 x 1TB — RAID 5
Chassis N/A N/A 1U 1U 2U
Power N/A N/A 1 x 460W CS Platinum Power Supply 2 x 460W CS Platinum Power Supply 2 x 750W CS Platinum Power Supply
Ethernet Interfaces N/A N/A 4 x 10/100/1000 4 x 10/100/1000 4 x 10/100/1000
Host Bus Adapter N/A N/A N/A Emulex LPe12002 N/A
Dimensions (DxWxH) N/A N/A 1.70 x 16.78 x 27.25″ 1.70 x 16.78 x 27.25″ 3.38 x 17.54 x 29.25″

Actual performance will depend on factors specific to a user’s environment.