Text only | Text with Images

NetXMS Support Forum

English Support => General Support => Topic started by: Egert143 on June 18, 2019, 02:52:16 PM

Title: Alert based on syslog amount
Post by: Egert143 on June 18, 2019, 02:52:16 PM
Hello

Wanted to ask if its possible to alert based on how much node has logged syslog messages? For example if switch is usualy quiet and then suddenly starts generating alot of logs, is it possible to detect?

Egert
Title: Re: Alert based on syslog amount
Post by: Victor Kirhenshtein on June 19, 2019, 12:54:15 PM
Hi,

you can configure DCI on a switch with source "internal" and parameter ReceivedSyslogMessages- it is cumulative counter for received syslog messages. Then you can either do delta transformation and create threshold on it or use "diff" threshold on raw value.

Best regards,
Victor
Title: Re: Alert based on syslog amount
Post by: Egert143 on June 19, 2019, 02:38:44 PM
That was simple solution, thanks :)
Text only | Text with Images