[Xymon] How do I get windows events to turn red?
Kris Springer
kspringer at innovateteam.com
Tue May 10 20:22:14 CEST 2022
Here's some sample lines that I have running in my analysis.cfg file on
the Xymon Server. It's checking the log files it gets from the client
and if it sees the specifics I'm looking for it will flag an alert. This
of course assumes that your client is sending logs that appear in the
'msgs' column of your Xymon Server.
HOST=boxA
#LOG filename match-pattern [COLOR=color] [IGNORE=ignore-pattern]
[TEXT=displaytext]
LOG %.* [2004] COLOR=red IGNORE=FIPS
LOG %.* [7034] COLOR=red
LOG %.* [6417] IGNORE
LOG %.* [4624] COLOR=yellow
Kris Springer
On 5/10/22 12:01, me at tdiehl.org wrote:
> Hi,
>
> I am using the win_ps_client to monitor a bunch of windows servers. In
> looking
> at the documentation it appears that I should be able to get Xymon to
> alert
> on different events.
>
> I have added
> eventlogswanted:information,Application,System:2048:Warning,Critical,error
> to client-local.cfg and eventlog:System in the analysis.cfg file. When
> I do
> this I see various messages when I click on msgs dot. However, I
> cannot figure
> out how to get it to turn red when it sees the events I want to monitor.
>
> In the docs I see mention of include and exclude parameters but I do not
> understand exactly how I need to configure things.
>
> I would like to be able to alert on certain windows event IDs Is this
> possible?
> If yes, how do I actually configure xymon to do this?
>
> Regards,
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.xymon.com/pipermail/xymon/attachments/20220510/c008393f/attachment.htm>
More information about the Xymon
mailing list