RSyslog monitoring?

Kevin Keane subscription at kkeane.com
Sun Apr 11 12:08:04 CEST 2010

Previous message: Designing distributed and failover architecture
Next message: RSyslog monitoring?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I would like to find a way to monitor syslog entries using rsyslog 4.4 rules before they are ever written to a log file. The log parsing plugins I found on MonitoringExchange aren't useful for my purpose.

I have three main requirements:

- I need to have "negative logic": I want to provide a list of patterns NOT to forward to Nagios - all unknown log entries should be sent to nagios.

- It needs to be realtime, or nearly so. Ideally, I'd like to use rsyslog rules to classify log messages and forward them to Nagios as passive-check results.

- It needs to be reasonably high performance. This syslog receives quite a few log entries per second (most of which would be discarded of course).

Has anybody else already done something like this?

Kevin Keane
Owner
The NetTech
Find the Uncommon: Expert Solutions for a Network You Never Have to Think About

Direct: 760-721-8339
Office: 866-642-7116

kkeane at 4nettech.com
http://www.4nettech.com

This e-mail and attachments, if any, may contain confidential and/or proprietary information. Please be advised that the unauthorized use or disclosure of the information is strictly prohibited. The information herein is intended only for use by the intended recipient(s) named above. If you have received this transmission in error, please notify the sender immediately and permanently delete the e-mail and any copies, printouts or attachments thereof.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20100411/6c4ea2dd/attachment.html>
-------------- next part --------------
------------------------------------------------------------------------------
Download Intel® Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
http://p.sf.net/sfu/intel-sw-dev
-------------- next part --------------
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue.
::: Messages without supporting info will risk being sent to /dev/null

Previous message: Designing distributed and failover architecture
Next message: RSyslog monitoring?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list