Reports on node down but traffic from that machine continues?
Hi all, I would like to make a rule to email or preform another action for the event that a node is in a disconnected status, but lem is getting logs with the machine name of that node in the log....
View ArticleSolarWinds Event Log Consolidator
Just installed SolarWinds Event Log Consolidator on my Windows 2012 R2 Standard Server Had to install netframe 3,51 first strange that solarwinds cant work with netframe 4.5 which 2012 installs but...
View ArticleTriGeo Alert Email
I have been getting alerts from LEM that I have no idea where they are coming from. The only thing in the body of the email is "at"..... Does anyone have any ideas where I can start to look for this...
View ArticleFIM: disabled on startup
I have noticed that even after enabling FIM on startup on Windows 7 workstations, they are disabled the next day. anyone else seeing this?
View ArticleLEM Version 6.2.1 hotfix 2 restore - https down
I had removed a server node and wanted to just roll back to my configuration backup I had scheduled for Sundays to put the node and all connectors back. The restore was successful, but I did not notice...
View ArticleLEM Storage Capacity Alert
Currently evaluating LEM to replace our existing SIEM. We have a requirement that says we have to be alerted when our log storage disk capacity reaches 80%. While we could do this within VMWare, we...
View Articlenetscaler in lem?
Has anyone had any luck getting netscalers to show up in lem?I've not had any luck as of yet. Not very much info out there that I've been able to find from either vendor.
View ArticleSaved nDepth Searches Not Really Saved?
Do saved searches not really save? In nDepth, I was using the search builder. I worked a long time to get a saved search just how I liked it, then hit "Save" in the upper right corner gear. Then I...
View ArticleClik here to view.
How to customized reports solarwinds LEM
Hi All How to customized reports solarwinds LEM ? example :
View ArticleSorting by field within a user-defined group
Can you sort by a field, such as 'name' while editing a user-defined group and if not, could that feature be added?
View ArticleLEM - Mount error 13
I am able to mount a Windows share folder when I do a syslog export from LEM to my share folder.But when I try to do an archive job to the same share folder path using the same credentials, it gives me...
View Articlesuspicious DNS traffic rule
We have recently added checkpoint and the "suspicious DNS traffic" rule is triggering incidents. We have identified the DC as per the templates but are trying to decrease incidents.
View ArticleFIM: disabled on startup
I have noticed that even after enabling FIM on startup on Windows 7 workstations, they are disabled the next day. anyone else seeing this?
View ArticleMigrate VMWare appliance to HyperV
Hi, Our company is switching from VMWare to HyperV. Is there any experience with migrating LEM?Can i just make a backup of the VMWare appliance and restore it on a HyperV appliance?
View ArticleFortigate connector not sending Web traffic info
I am trying to get the Fortigate (FG51E or FG100) to send web traffic events. I am getting the IPTraffic event but only get a Webtraffic event when the Fortigate blocks a website; and then the URL...
View ArticleLEM not keeping connection to firewall.
We ar having problems with LEM 6.2 not keeping the connection to our firewalls, it is like the connection is lost after 24 hours. any one else???
View Articlesaved ndepth searches disappeared but email sent
After I rebooted the appliance through putty, i lost the saved searches however the email is still being sent. I am unable to see the saved searches. Anyone experience this?
View ArticleIs there a list of LEM Best Practices, or Most Common Rules?
I tried searching for Best Practices, but only found a few documents. Is there a site for LEM Best Practices, common rules, or implementation suggestions? What do you feel is your best rule? Thanks...
View ArticleClik here to view.
Ndepth scheduled search limit
I found the link below from solarwinds stating the ndepth export for CSV at 500,000 events, however one of my scheduled reports only showed 50,000. Is this a bug? nDepth export to CSV/PDF limitation -...
View Article