Real-Time Reports

By using real-time reports, you can search and generate reports for monitoring various real-time activities.

The real-time activities are derived from the log data that is collected from your log sources. Each Real-Time report category contains multiple specific reports.

Warning: Depending on LogLogic LSP packages and your selected log sources, you might see different types of reports, columns, and optional filters for each report.

Preparing a Real-Time Report

The real-time reports are a central component to the agile reporting in LogLogic. By using the real-time reports, you can quickly view detailed information about the collected log data, catered to your specific needs.

Real-time reports can take longer than Saved Reports because they run against all up-to-the-minute raw log data; and not against stored summarized log data. Real-time reports capture all hits in collected raw log data that meet the report criteria.

Sometimes, the message Message: Unavailable might be displayed in the report result. To view the accurate detailed messages, run an Advanced Search query by including the sys_body column.

Note: When two devices have the same IP address but only one device has a Collector Domain ID, duplicate data (data combined from both domains) might be displayed.

To generate a real-time report, refer to the procedure and illustrations in Generating a Report: An Example - Denied Connections Report.