Monitoring Syslog Messages
2. Click File > Settings.
3. Click Alerts/Filter Rules.
4. If you are creating a new rule, click Add New Rule.
5. If you are editing an existing rule, select the rule, and then click Edit
Selected Rule.
6.
On the General tab, complete the following steps:
a. Provide or edit the Rule Name, and then check Enabled.
b. Select appropriate servers from the Apply this Rule to list.
c.
Enter the IP addresses or subnets to which this rule applies in the Source
IP Addresses area.
Note: Use the examples provided on this tab to ensure that the list of
source IP addresses is properly formatted.
7.
If you want to limit the rule to only messages from specific hosts,
domains, or hostname patterns, on the DNS Hostname tab enter a DNS
Hostname Pattern.
Notes:
n The DNS Hostname Pattern rule is case-sensitive.
n When Use Regular Expressions in this Rule is checked, you may use
regular expressions in place of "like" statements. For more information
about using regular expressions in SolarWinds UDT, see "Regular
Expression Pattern Matching".
8.
If you want to limit the rule to only specific message types or text within
a Syslog message, on the Message tab enter rules as appropriate for Message
Type Pattern and Syslog Message Pattern.
Notes:
n Use the examples listed on this tab to format the list properly.
n When Use Regular Expressions in this Rule is checked, regular
expressions can be used in place of "like" statements. For more
information about using regular expressions in SolarWinds UDT, see
"Regular Expression Pattern Matching".
9.
If you want to apply specific severity or facility types, on the Severity /
Facility tab check the severity and facility types you want to apply.
Note: By default, all message severities and facilities are selected.
290
To Next Page
Loading...