[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [hobbit] Looking for sample BBWIN configs for filtering Windows event logs

To: hobbit (at) hswn.dk
Subject: Re: [hobbit] Looking for sample BBWIN configs for filtering Windows event logs
From: Shawn Heisey <elyograg (at) elyograg.org>
Date: Thu, 09 Oct 2008 14:04:30 -0600
References: <A3D12FAD74FC8B46991703F40C182BAB01078343 (at) permls102.wde.woodside.com.au> <gcl09s$f4n$1 (at) voodoo.hswn.dk> <EC70BBBBD43A8B468D2460FE1CFAAA26151967BE (at) EX1.nibco.com> <48EE4539.6020704 (at) elyograg.org> <d4f70c240810091212pd8290b5le3f9d3ac0323729b (at) mail.gmail.com>
User-agent: Thunderbird 2.0.0.17 (Windows/20080914)

It looks like the ignore section only uses text matches, in this caseregular expressions, right? That would mean it can't match on event IDunless I encode something like "Print (8)" in a regular expression format.

Not that this is a huge problem, but having a nice clean field likeevent ID is one of the good things about BBWin's local config mode. I'mjust tired of having to remote into the client to change something,especially when I have to do it on more than one client.

Thanks for the info! Only one more thing I'd want - do you have anexamples of centrally defined service monitoring?


Bob Gordon wrote:

On Thu, Oct 9, 2008 at 10:54 AM, Shawn Heisey <hobbit (at) elyograg.org<mailto:hobbit (at) elyograg.org>> wrote:
    I have a question that's really more suited for the BBWin mailing
    list, but I've asked it there and gotten no response:  Does anyone
    have a complete server-side configuration example for BBWin
    clients, showing how to handle all aspects of the client
    configuration?
This is the one that I am using. I still have some cleanup to do onit though....
###########################################################
## The defaults used by the Hobbit clients
###########################################################
DEFAULT
        UP      30m
        DISK    * 90 95
        SWAP    85 90
        MEMPHYS 100 101
        MEMSWAP 90 95
        MEMACT  90 97
        CLOCK   30

###########################################################
## Windows Based Systems - Central Config Mode
###########################################################
CLASS=%win32*  EXHOST=server1,server2
        LOAD 80 90              # Load thresholds are in %
        PROC svchost.exe 2 -1
        PROC %[mM]cshield.exe 1 -1
        PROC nserver.exe 1 -1
        PROC nrouter.exe 1 -1
LOG %.* %.*error.* COLOR=redIGNORE=%(BigBrotherHobbitClient|SnapDrive|WinVNC4|TermDD|SV-GSX|TermServDevices|Perflib|PerfNet)
So far its worked out pretty well as my default setting... After theDefault section and before the generic section above I have my systemspecific entries...

Follow-Ups:
- Re: [hobbit] Looking for sample BBWIN configs for filtering Windows event logs
  - From: Bob Gordon

References:
- Hobbit server crashing
  - From: Everett, Vernon
- Re: [hobbit] Hobbit server crashing
  - From: Henrik Stoerner
- Looking for sample BBWIN configs for filtering Windows event logs
  - From: Kauffman, Tom
- Re: [hobbit] Looking for sample BBWIN configs for filtering Windows event logs
  - From: Shawn Heisey
- Re: [hobbit] Looking for sample BBWIN configs for filtering Windows event logs
  - From: Bob Gordon

Prev by Date: Re: [hobbit] Hobbit development
Next by Date: RE: [hobbit] Sun Grid Engine monitoring
Previous by thread: Re: [hobbit] Looking for sample BBWIN configs for filtering Windows event logs
Next by thread: Re: [hobbit] Looking for sample BBWIN configs for filtering Windows event logs
Index(es):
- Date
- Thread