Hi All,
I encountered a problem in log monitoring. I have item configuration to use logrt() function, that will monitor the application log. If the line of application log contain the key word "WARN", the log should be returned. Then I have defined some triggers to send alert notification.
However I received multiple notification for a single problem event. Finally I disabled all triggers on this item, and monitor the latest date of it. I have noticed that the last few lines of problem event will be captured several times.
Could anyone tell me what wrong in my item configuration? How to avoid this problem? Thanks in advance.
Zabbix server version: Zabbix 4.4.6
Zabbix agent version: zabbix-agent-4.4.6-1.el7.x86_64
OS : Red Hat Enterprise Linux Server release 7.7 (Maipo)
item key: logrt["/k8s_log/smx_stub_smpp_client_1/log/SYSTEM.LOG","WARN",,,skip,,,]
Result: Latest Data
I encountered a problem in log monitoring. I have item configuration to use logrt() function, that will monitor the application log. If the line of application log contain the key word "WARN", the log should be returned. Then I have defined some triggers to send alert notification.
However I received multiple notification for a single problem event. Finally I disabled all triggers on this item, and monitor the latest date of it. I have noticed that the last few lines of problem event will be captured several times.
Could anyone tell me what wrong in my item configuration? How to avoid this problem? Thanks in advance.
Zabbix server version: Zabbix 4.4.6
Zabbix agent version: zabbix-agent-4.4.6-1.el7.x86_64
OS : Red Hat Enterprise Linux Server release 7.7 (Maipo)
item key: logrt["/k8s_log/smx_stub_smpp_client_1/log/SYSTEM.LOG","WARN",,,skip,,,]
Result: Latest Data
Comment