Hello all, how are you? it's my first time on this forum after some long Zabbix days ;-).
I have an interesting question and I'll be really thankful for some usable tips.
Preview: Let's imagine I have a log file which includes the following "priorities": DEBUG, NOTICE, WARNING, PANIC, etc. Moreover, let's imagine that each event in the log not just containing the priority but also containing some unique identifiers, for example:
<DATE> <TIME> ERROR WebProxy <MSG>
<DATE> <TIME> ERROR DBServer <MSG>
1. If I don't know all of the priorities and I also don't know all of the "unique identifiers", meaning, extra priorities or unique identifiers could be added from time to time, how can I create items, for example, how I'll create a test that will give me the number of lines that includes specific priority and specific identifier? for example - I'll want to see in "Latest data":
WebProxy ERROR count -> 4
DBServer ERROR count -> 10
Do some Low-Level-Discovery external scripts and Regex (in-order to find out the priorities and identifiers in real-time) are the *way* to go?
2. Does Zabbix support items with multiple values? for example, an integer and a string? again - for log monitoring purposes. I'll want to number of appearances in-order to create graphs/alerts/etc. + use Zabbix as some kind of "dashboard" to show the specific error messages strings/events. Is it something possible?
I'll really apprecaite your tips and feedbacks!
Thanks in advance!
+DMor.
I have an interesting question and I'll be really thankful for some usable tips.
Preview: Let's imagine I have a log file which includes the following "priorities": DEBUG, NOTICE, WARNING, PANIC, etc. Moreover, let's imagine that each event in the log not just containing the priority but also containing some unique identifiers, for example:
<DATE> <TIME> ERROR WebProxy <MSG>
<DATE> <TIME> ERROR DBServer <MSG>
1. If I don't know all of the priorities and I also don't know all of the "unique identifiers", meaning, extra priorities or unique identifiers could be added from time to time, how can I create items, for example, how I'll create a test that will give me the number of lines that includes specific priority and specific identifier? for example - I'll want to see in "Latest data":
WebProxy ERROR count -> 4
DBServer ERROR count -> 10
Do some Low-Level-Discovery external scripts and Regex (in-order to find out the priorities and identifiers in real-time) are the *way* to go?
2. Does Zabbix support items with multiple values? for example, an integer and a string? again - for log monitoring purposes. I'll want to number of appearances in-order to create graphs/alerts/etc. + use Zabbix as some kind of "dashboard" to show the specific error messages strings/events. Is it something possible?
I'll really apprecaite your tips and feedbacks!
Thanks in advance!
+DMor.