Creating and Managing Storage

Navigation:  Configuration >

Creating and Managing Storage

Previous pageReturn to chapter overviewNext page

These storage that are defined are the local storage on the central OTUS node, where the data that enters the system (copy methods) is stored. Your valuable data logs can then be archived and analyzed later. Using OTUS SIEM you can also create your own storage rule.

 

Note:   The default storage is /var/log/otus/storage1 and that it can’t be deleted. However the path and size of this storage can be changed.

 

To create or assign a storage space

 

1.   Select Storage from the Configuration menu.

 

      storage_menu

 

      The web-page refreshes to display the following details.

 

storage_pg

 

Note:   Positioning your mouse over the Usage graph or any record displays the actual storage space used. storage_space_tooltip

 

2.   Click add_filter_btn. The following fields and buttons are displayed.

 

storage_add_flds

 

3.   Click inside the box below Name. The box is enabled.

 

4.   Enter a name for the storage.

 

5.   Click inside the box below Path. The box is enabled.

 

6.   Enter the path (physical location) where the storage is to be located.

 

7.   Click inside the box below Size. The box is enabled.

 

8.   Enter the storage space of the storage in this box.

 

Note:   The variable data retention total warning limit (%) under Configuration -> Settings determines when (at what limit of the storage space) notification is to be sent to the user.

 

9.   Click save_btn.

 

Note:   In the initial state there is 1 default storage and 1 default storage rule (which points all incoming data to that default storage. It is of lowest priority.

 

 

To delete a storage

 

Note:   You cannot delete a storage until you delete the storage rule associated with it

 

1.   From the list of storage records displayed select the one you wish to delete. It is highlighted as shown below.

 

storage_selected

 

2.   Click delete_btn. The following delete confirmation dialog is displayed.

 

      storage_deleteconf_dg

 

3.   Click Yes.

 

Caution:   Delete storage spaces with caution. The process is irreversible. When deleting a storage all its storage rules are also deleted. Affected log data is moved to new storages depending on the remaining storage rules.

 

 

To modify a storage

 

1.   Double-click the Name, Path or Size fields of a record you wish to modify. The field is enabled for editing.

 

2.   Edit the field as per your requirement.

 

3.   Click save_btn to save the changes or click cancel_btn to cancel and close without saving any changes you have made.