Ad Widget

**zalex_ua** · 21-10-2010, 01:24

Originally posted by aic

Hi All,
Is there any experience merging the advantage of Syslog-NG with Zabbix?

Yes. See my pictures in https://support.zabbix.com/browse/ZBXNEXT-470
This is: UDP -> Syslog-NG -> My own script -(TCP)> Zabbix server.

I plan to publish someday my script.
Although there is already a powerful turnkey solution http://www.zabbix.com/forum/showthread.php?t=19180

**aic** · 21-10-2010, 16:55

Error filling the columns with log anlizer.

Hi All,

I am trying to catch the error message from my logs and I am completely lost.

I have the server running the latest version of agent (1.8.3)

I have configured to run "Zabbix Agent (active)" int zabbix_agentd.conf file.

I have created an Item to catch and parse this error msg in the file :

I have set up this action:

Here I am attaching how I am seeing the "Monitoring" -> "Latest Data" -> "Log Files":

Please any suggestions or comments will be welcome.

Thanks in advance,
aic

Attached Files

**aic** · 21-10-2010, 17:15

Zabbix & Syslog-NG

Thank you so much for yor message zalex_ua.

I posted here my own configuration. I can see you are getting the right setting into the zabbix console. It is not happen to me now.

Thanks again.
aic

**alixen** · 21-10-2010, 17:17

Hi,

In Zabbix, dependency chain is item -> trigger -> action.
You have no trigger.
Check manual for details : http://www.zabbix.com/documentation/...onfig/triggers

regards,
Alixen

**zalex_ua** · 21-10-2010, 17:55

Firstly, RTFM.

Originally posted by aic

I am trying to catch the error message from my logs and I am completely lost.
I have created an Item to catch and parse this error msg in the file :
Here I am attaching how I am seeing the "Monitoring" -> "Latest Data" -> "Log
Files":

You should use Type of information "Text" instead of "Log". "Log" specially created for windows events logging, not for plain text log. As result you will not see Local time, Source, Severity, Event ID columns.

Others me presented solution - is not original from Zabbix. Be patience to deal with them. Yes, its have possibility fill all columns for Type of information "Text".

Originally posted by aic

I have set up this action:

Use two condition Trigger value = "OK" and simultaneously Trigger value = "PROBLEM" this is absolutely illogical. I think you should delete condition Trigger value = "OK".

**aic** · 21-10-2010, 18:41

Zabbix & Syslog-NG

Thanks for the recommendation. The situation improved a litte.

But, now, as you says, I tried to change in the "Item" -> Type of Information: from "Log" to "Text" and I got this error message trying to save the new configuration:

"Type of information must be Log for log key"

Any suggestion?

Thx

**zalex_ua** · 21-10-2010, 19:04

oh, yeah, i forgot. this is checking Type of information are fresh future

No more suggestion, i said all.

**aic** · 21-10-2010, 19:56

I really appreciate your help.

Now, I am still worried about that...missed, about how to fill in the columns to show the whole message in the "Latest data" view.

Because, as the "Severity = Unknown" I can't manage the actions correctly

Anyway, thanks for all..at least I am catching and showing the alerts in the console right now ....

aic

Ad Widget

Zabbix & Syslog-NG

Zabbix & Syslog-NG

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment