Hello,
This post is about "homemade" logfile monitoring on a windows machine!!
************************************************** *
Once you have setted-up the server <-> agent connection, you are ready to monitor some stuff..
But to monitor a log file, you have to do some other settings. ( will be explained later )
First I will give you a right clarify how zabbix put all these things together.
Within Zabbix there are serveral things:
1 - Items
2 - Triggers
3 - Actions
- items are just raw data sources and won't trigger any alert (even zabbix failing to collect data will just silently mark item as "unsupported")
- triggers are logic that say - based on item data - whether things are running as expected and how bad (severity) it is if they're not
- alerts / actions take triggers as input (with filtering) and then execute operations (messages, remote commands) as "output"
What to do exactly Things are explaned by the logfile example
I want to send an email when something ( the word: "error" ) exists in the log file. The logfile is located a the C:\ drive.
The file is called log.log.
The file-extension needs to be *.log. Otherwise it will NOT work!
!!ITEMS!!
Items are used to get the information
Below there is an image with the item - settings
!!TRIGGER!!
After that, the item is used to generate the trigger:
!!ACTION!!
The trigger is used to "generate"an action.
Otherwise the action is triggered by the trigger
As shown in the pictures you can see that we need a active agent connection. So the server needs to ask something at the agent.
Therfore.. check these settings:
I think ( because the time ), that everything is clear for now.
If you have questions....
Post a reaction. I will react within 1 day / 24 hours.. (99% uptime)
Greets Gerard
This post is about "homemade" logfile monitoring on a windows machine!!
************************************************** *
Once you have setted-up the server <-> agent connection, you are ready to monitor some stuff..
But to monitor a log file, you have to do some other settings. ( will be explained later )
First I will give you a right clarify how zabbix put all these things together.
Within Zabbix there are serveral things:
1 - Items
2 - Triggers
3 - Actions
- items are just raw data sources and won't trigger any alert (even zabbix failing to collect data will just silently mark item as "unsupported")
- triggers are logic that say - based on item data - whether things are running as expected and how bad (severity) it is if they're not
- alerts / actions take triggers as input (with filtering) and then execute operations (messages, remote commands) as "output"
What to do exactly Things are explaned by the logfile example
I want to send an email when something ( the word: "error" ) exists in the log file. The logfile is located a the C:\ drive.
The file is called log.log.
The file-extension needs to be *.log. Otherwise it will NOT work!
!!ITEMS!!
Items are used to get the information
Below there is an image with the item - settings
!!TRIGGER!!
After that, the item is used to generate the trigger:
!!ACTION!!
The trigger is used to "generate"an action.
Otherwise the action is triggered by the trigger
As shown in the pictures you can see that we need a active agent connection. So the server needs to ask something at the agent.
Therfore.. check these settings:
Code:
# This is a config file for Zabbix Agent (Windows) # To get more information about Zabbix, go to http://www.zabbix.com ############ GENERAL PARAMETERS ################# ### Option: DebugLevel # Specifies debug level # 0 - no debug # 1 - critical information # 2 - error information # 3 - warnings # 4 - for debugging (produces lots of information) # # Mandatory: no # Default: DebugLevel=4 ### Option: LogFile # Name of log file. # # Mandatory: no # Default: # LogFile= LogFile=C:\Program Files\Zabbix Agent\Zabbix_agentd.log ### Option: LogFileSize # Maximum size of log file in MB. # 0 - disable automatic log rotation. # # Mandatory: no # Range: 1-1024 # Default: # LogFileSize=1 ### Option: SourceIP # Source IP address for outgoing connections. # # Mandatory: no # Default: # SourceIP= ### Option: EnableRemoteCommands # Whether remote commands from Zabbix server are allowed. # 0 - not allowed # 1 - allowed # # Mandatory: no # Default: [COLOR="red"]EnableRemoteCommands=1[/COLOR] ##### Passive checks related ### Option: Server # List of comma delimited IP addresses (or hostnames) of Zabbix servers. # No spaces allowed. First entry is used for receiving list of and sending active checks. # Note that hostnames must resolve hostname->IP address and IP address->hostname. # # Mandatory: yes # Default: # Server= Server=192.168.0.246 ### Option: Hostname # Unique hostname. # Required for active checks and must match hostname as configured on the server. # # Default: # Hostname=system.uname [COLOR="red"]Hostname=MonClient3[/COLOR] ### Option: ListenPort # Agent will listen on this port for connections from the server. # # Mandatory: no # Range: 1024-32767 # Default: [COLOR="red"]ListenPort=10050[/COLOR] ### Option: ListenIP # Agent will listen on the specified interface. # # Mandatory: no # Default: # ListenIP=0.0.0.0 #Not original needed #ListenIP=192.168.0.246 ### Option: DisablePassive # Disable passive checks. The agent will not listen on any TCP port. # Only active checks will be processed. # 0 - do not disable # 1 - disable # # Mandatory: no # Default: # DisablePassive=0 ##### Active checks related ### Option: DisableActive # Disable active checks. The agent will work in passive mode listening for server. # # Mandatory: no # Default: # DisableActive=0 # DisableActive=1 ### Option: ServerPort # Server port for retrieving list of and sending active checks. # # Mandatory: no # Default: [COLOR="red"]ServerPort=10051[/COLOR] ### Option: RefreshActiveChecks # How often list of active checks is refreshed, in seconds. # # Mandatory: no # Range: 60-3600 # Default: # RefreshActiveChecks=120 ### Option: BufferSend # Do not keep data longer than N seconds in buffer. # # Mandatory: no # Range: 1-3600 # Default: # BufferSend=5 ### Option: BufferSize # Maximum number of values in a memory buffer. The agent will send # all collected data to Zabbix Server or Proxy if the buffer is full. # # Mandatory: no # Range: 1-65535 # Default: # BufferSize=100 ### Option: MaxLinesPerSecond # Maximum number of new lines the agent will send per second to Zabbix Server # or Proxy processing 'log' and 'eventlog' active checks. # The provided value will be overridden by the parameter 'maxlines', # provided in 'log' or 'eventlog' item key. # # Mandatory: no # Range: 1-1000 # Default: # MaxLinesPerSecond=100 ############ ADVANCED PARAMETERS ################# ### Option: StartAgents # Number of pre-forked instances of zabbix_agentd that process passive checks. # # Mandatory: no # Range: 1-16 # Default: StartAgents=5 ### Option: Timeout # Spend no more than Timeout seconds on processing # # Mandatory: no # Range: 1-30 # Default: # Timeout=3 ### Option: Include # You may include individual files or all files in a directory in the configuration file. # # Mandatory: no # Default: # Include= # Include=c:\zabbix\zabbix_agent.userparams.conf # Include=c:\zabbix\zabbix_agentd\ ####### USER-DEFINED MONITORED PARAMETERS ####### ### Option: UserParameter # User-defined parameter to monitor. There can be several user-defined parameters. # Format: UserParameter=<key>,<shell command> # Note that shell command must not return empty string or EOL only. # Example: UserParameter=system.test,echo 1 #UserParameter=system.test,echo 1 [/QUOTE]
If you have questions....
Post a reaction. I will react within 1 day / 24 hours.. (99% uptime)
Greets Gerard
hahaha
Comment