• State Suggested Answer
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 14 subscribers
  • Views 1454 views
  • Users 0 members are here
Options
Related

alert on the absence of syslog data

wade
over 3 years ago

Has anyone done this?  Any device we syslog normally is sending a sufficiently constant stream of syslog data..

Is there a way to alert to the absense of data? Something like "no syslog data received from device in X minutes"

Thanks,

Wade

Parents
  • 0 over 3 years ago

    Hi Wade, do you mean Syslog Device listening in InTrust Deployment manager or Syslog scheduled gathering via nix agent? In the first case the answer is negative, in the second case positive. You can use Missing Event rule wizard to create the new missing event type rule and apply it to Linux Syslog data source. Feel free to ask questions if have problems while doing this.

Reply
  • 0 over 3 years ago

    Hi Wade, do you mean Syslog Device listening in InTrust Deployment manager or Syslog scheduled gathering via nix agent? In the first case the answer is negative, in the second case positive. You can use Missing Event rule wizard to create the new missing event type rule and apply it to Linux Syslog data source. Feel free to ask questions if have problems while doing this.

Children
No Data