Solved

IIS Logging

Posted on 2014-10-10
3
181 Views
Last Modified: 2014-10-17
We are sending our IIS logs offsite for 90-day retention on-hand, and then further 365-day retention in archives. This adds up to over 350GB of logs per year for us, and is costing us a lot. We are doing this to meet PCI compliance.

We would like to cut down on our IIS logs without sacrificing security or compliance. From the list below, please list all non-essential items that we can cut. Thanks much.

Date
Time
Client IP Address
User Name
Service Name
Server Name
Server IP Address
Server Port
Method
URI Stem
URI Query
Protocol Status
Protocol Substatus
Win32 Status
Bytes Sent
Bytes Received
Time Taken
Protocol Version
Host
User Agent
Cookie
Referer
0
Comment
Question by:pzozulka
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 82

Accepted Solution

by:
David Johnson, CD, MVP earned 250 total points
ID: 40374340
This adds up to over 350GB of logs per year for us, and is costing us a lot. you could compress these files using zip or winrar before sending to your storage provider.. These files are highly compressible. 350GB on Amazon Glacier is probably a lot cheaper than what you are paying now.
0
 
LVL 28

Assisted Solution

by:Dan McFadden
Dan McFadden earned 250 total points
ID: 40376788
Dropping a field from your http logs will not make that great of a difference in the size of your log files.  The log size is governed more by the activity on the website.  More activity equals larger logs... 1 or 2 less fields won't make a difference.

I agree with what David said above.  Http logs are simple text files and compress like a champ.  Compression will get you around an 85-90% reduction in file size.

Dan
0
 
LVL 8

Author Comment

by:pzozulka
ID: 40380099
These are not compressible as they need to be sent in either plain text or JSON for further analysis, monitoring, reporting, and trending for PCI compliance. We are sending them to loggly.com.
0

Featured Post

Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Liquid Web and Plesk discuss how to simplify server management with a single tool  in their webinar.
Recovering from what the press called "the largest-ever cyber-attack", IT departments worldwide are discussing ways to defend against this in the future. In this process, many people are looking for immediate actions while, instead, they need to tho…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Suggested Courses
Course of the Month9 days, 3 hours left to enroll

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question