Pondurance can collect logs using the Sidecar Agent, which can be deployed on Windows and Linux endpoints. We can also pull logs from 3rd party applications/sources.
tcp/443 to sidecar.pondurance.comTo the log forwarders internal IP:
tcp/5044 (beats)tcp/514 (syslog)udp/514 (syslog)The sub-pages will guide you through what needs to be done in order to grant Pondurance access to these logs.
Log Forwarder Appliance Virtualized Hardware Requirements
| SIZE | SMALL | MEDIUM | LARGE |
|---|---|---|---|
| CPU | 4 | 8 | 24 |
| MEMORY | 16GB | 24GB | 64GB |
| STORAGE | 130GB | 250GB | 500GB |
Please, make sure there’s no CPU utilization limit or CPU usage cap set by the hypervisor.
Similarly, Pondurance doesn’t recommend using burstable cloud instances (like AWS T-series, Azure B-series, or Google Cloud shared-core machine types) for Log Forwarder appliances. Otherwise, the appliance may lose data when the CPU credits are exhausted.
Please, also make sure that features like Dynamic Memory (Hyper-V) or Memory Ballooning (VMware) are disabled.