I am looking for a means of creating an item that tracks the number of a certain type of event log entry.
Right now, it's easy for me to say "Return a log with all entries that match these criteria" and then build a trigger that will fire if there are more than X of those entries in the last Y seconds, which is fine, but doesn't give me the ability to graph those errors. What I would like instead is an item that returns the number of event log entries matching my criteria in the last Y seconds, and then I can build a trigger to fire if the value of that item exceeds my threshold. This would give me both triggering and tracking of this value, and it would, I believe, have the advantage of not having to store all the event log entries in the Zabbix database.
Is this possible? I tried doing some items with the count function, but I have been unable to get them to work. Has anyone had any luck with this sort of exercise?
Right now, it's easy for me to say "Return a log with all entries that match these criteria" and then build a trigger that will fire if there are more than X of those entries in the last Y seconds, which is fine, but doesn't give me the ability to graph those errors. What I would like instead is an item that returns the number of event log entries matching my criteria in the last Y seconds, and then I can build a trigger to fire if the value of that item exceeds my threshold. This would give me both triggering and tracking of this value, and it would, I believe, have the advantage of not having to store all the event log entries in the Zabbix database.
Is this possible? I tried doing some items with the count function, but I have been unable to get them to work. Has anyone had any luck with this sort of exercise?
Comment