The attached patch implements agent side filtering of event log events on the 'event source' and 'event type'.
For this functionality the Item key eventlog parameter syntax is extended to allow two extra optional parameters that enable the user to specify a filter expression for the event source and for the event type.
New parameter syntax:
eventlog[<eventlog name>,<event value (description) filter expression>,<event source filter expression>,<event type filter expression>]
This change can greatly reduce the number of events that is sent to the Zabbix server, especially when monitoring just one application or just the error events.
This patch was made using zabbix-1.6.1.tar.gz from 2008-11-04
To apply the patch:
- change to the root of the zabbix source tree
- copy the patch file to the root of the zabbix source tree
- apply the patch with patch -p 1 -i eventlog.patch
I have tested this patch with a stock Zabix 1.6.1 server install on CentOS 5
and a Windows XP Professional SP2 for the Windows agent.
For this functionality the Item key eventlog parameter syntax is extended to allow two extra optional parameters that enable the user to specify a filter expression for the event source and for the event type.
New parameter syntax:
eventlog[<eventlog name>,<event value (description) filter expression>,<event source filter expression>,<event type filter expression>]
This change can greatly reduce the number of events that is sent to the Zabbix server, especially when monitoring just one application or just the error events.
This patch was made using zabbix-1.6.1.tar.gz from 2008-11-04
To apply the patch:
- change to the root of the zabbix source tree
- copy the patch file to the root of the zabbix source tree
- apply the patch with patch -p 1 -i eventlog.patch
I have tested this patch with a stock Zabix 1.6.1 server install on CentOS 5
and a Windows XP Professional SP2 for the Windows agent.
Comment