Sumo Logic with Always-on Packet Capture

Sumo Logic

Integrating Sumo Logic with the always-on, full packet capture of EndaceProbes provides hard evidence required to hunt for and combat the most serious threats, and challenging IT and networking issues.

From alerts in Sumo Logic you can pivot directly to the full packet evidence recorded by EndaceProbes on your physical or cloud networks to see exactly what has taken place on the network. You can filter your view of the traffic, drill into specific protocols or hosts or zoom in or out on the timeline to look at related traffic. And with Wireshark built-in, you can analyze the full packet data without having to download and wrangle big trace files.

See Sumo Logic and Endace in action

Why deploy Endace’s packet capture With Sumo Logic's SaaS Log Analytics Platform?

Capture every threat, breach and outage

Recall every network activity with perfect clarity. Always on packet capture means you always have the data you need.

Visibility across your entire hybrid network

Record weeks to months of traffic from across your distributed, on-premise, public and private cloud network.

Faster investigation and response

Rapid, centralized search and data-mining puts conclusive forensic evidence at your fingertips in seconds not hours.

Powerful forensics

Quickly and accurately reconstruct events, analyze pcap data and reassemble files with InvestigationManager.

Enterprise-class scalability

Your entire estate of EndaceProbes, physical and cloud, managed centrally, with network-wide investigations from a single pane-of-glass.

Fits the way you work

Endace’s prebuilt integrations with Sumo Logic SaaS Log Analytics Platform and other tools in your environment provides one-click access to full packet data for streamlined workflows.