ClearSkies™ NG iCollector™ is an intelligent device which collects and intelligently analyzes in real time log data from hundreds of different types of assets. ClearSkies™ NG iCollector™ is offered as a physical or virtual appliance, and can be deployed either on-premises, cloud or both in hybrid environments.
Performing a number of operations, the ClearSkies™ NG iCollector™ Collects, Archives (Digitally Signs/Encrypts), Normalizes, Intelligently Analyzes, Correlates vast volumes of heterogeneous log data, utilizing contextual information and evidence-based knowledge of emerging threats, vulnerabilities, users and assets, for the early detection and response to targeted attacks and data breaches. To safeguard the confidentiality and preserve the integrity of sensitive information, collected log data may undergo a masking process.
ClearSkies NG iCollector
Archives (Digitally Signs/Encrypts)
Correlates vast volumes of heterogeneous log data
To ensure the continuous availability of the service, two ClearSkies™ NG iCollector™ appliances can be deployed on the organization’s premises in a high-availability configuration.
All physical iCollectors support a high-availability option where a second iCollector acts as a failover system in case the primary iCollector goes down. They both share a virtual IP where all traffic from the in-scope assets is forwarded, ensuring minimum data loss and continuation of all operations as normal. In terms of the collecting applications, they too are taken care of, as they resume the collection from the secondary iCollector. All the rest (Correlation Engine, Reports, Big Data Search, Dashboard et al.) then work as expected, this way creating an invisible layer between the iCollector and the ClearSkies™ Secure Web Portal.
ClearSkies™ NG iCollector™ appliances can be deployed either as Virtual Machines running on supported Virtual platforms, or as a dedicated physical appliance.
|EPS||Up to 500||Up to 1000||Up to 2500|
|Hypervisor Type & Version||VMware 6.0 +/Hyper-V 2016 +||VMware 6.0 +/Hyper-V 2016 +||VMware 6.0 +/Hyper-V 2016 +|
|CPU||2 CPUs X 2 Cores||2 CPUs X 4 Cores||2 CPUs X 10 Cores|
|Memory||8 GB||16 GB||32 GB|
|HDD Size||500 GB||700 GB||1 TB|
|Network Interface||2 X 1 GBps||2 X 1 GBps||2 X 1 GBps|
|EPS||Up to 5000||More than 5000|
|CPU||2 CPUs x 8 Cores||2 x 20 cores Intel(R) Xeon(R) Silver 4114 CPU @ 2.20GHz and later|
|Memory||32 GB||64 GB ram (32 per socket)|
|Hard Drive||2 X 300 GB SAS + 4 x 600 GB SAS||(2 x 300 GB SAS) + (4 x 1 TB SAS)|
|Network Interface||3 X 1 GBps copper||Minimum 3 Gbit + 1 iLo|