Case Study: University of Exeter achieves faster security investigations with syslog-ng Store Box

University of Exeter - Customer Case Study

The University of Exeter needed a way to centrally collect and manage huge volumes of logs across a complex, multi-platform IT environment to speed up security investigations and support growing demand. With firewall logs alone producing more than 20 GB per day and peak traffic exceeding 10,000 log messages per second, the university turned to syslog-ng for a scalable logging solution.

syslog-ng implemented a syslog-ng Store Box (SSB) virtual appliance to centralize and index logs from firewalls, DHCP servers, VPN, email servers, and Apache web clusters, with plans to expand to additional systems. The result was faster searching, easier analysis, and quicker security response, with the university expecting to store five terabytes of archived log messages efficiently through the SSB web interface.

University of Exeter

Paul Sandy

Head of IT Governance and Compliance