Hi,
I'm having problems setting up the log file monitoring in Zabbix 1.8.8. So far I have configured the agent to read the log files and have a host item that is able to log these events with a regex filter. The part I'm having trouble with is getting the trigger to reset when a non-error log entry is encountered.
The host item for receiving the log events is as follows.
And is looking for log lines containing the text ERROR, FATAL, INFO or WARN. Messages with DEBUG are omitted.
What I want is if there is an ERROR or FATAL log message and no INFO for 5 minutes the produce an alert. The trigger below seems to activate correctly but will not reset when encountering an INFO log message.
I've included screen grabs of the Item and Trigger config pages.
Any help here would be great, I've tried searching the forums for similar questions but haven't found anything that works for me.
I'm having problems setting up the log file monitoring in Zabbix 1.8.8. So far I have configured the agent to read the log files and have a host item that is able to log these events with a regex filter. The part I'm having trouble with is getting the trigger to reset when a non-error log entry is encountered.
The host item for receiving the log events is as follows.
Code:
logrt[""D:\\App\\logs\\Test\.log", "ERROR|FATAL|INFO|WARN"]
What I want is if there is an ERROR or FATAL log message and no INFO for 5 minutes the produce an alert. The trigger below seems to activate correctly but will not reset when encountering an INFO log message.
Code:
{Odin:logrt["D:\\App\\logs\\Test\.log", "ERROR|FATAL|INFO|WARN"].regexp(ERROR|FATAL,300)}#0
Any help here would be great, I've tried searching the forums for similar questions but haven't found anything that works for me.
Attached Files
Comment