Today, we are using Kiwi syslog 7 (paid version) to capture syslog
traffic from various hosts (F5 Load balancers, Cisco equipment etc ..).
These syslog message are then put through some filters (Rules) (based
on IP address and port, contained in syslog message), and when a Rule
is encountered, actions issue,
varying from sending SNMP-traps to logging to a database (ODBC).
Unfortunately, the amount of monitored applications is growing
exponentially, and each copy of Kiwi syslog cannot hold more than 128
Rules, so we are forced to deploy more than one copy of the software (3
VMWare machines as we speak).
Is it possible (I would hope so) to put up a syslogd on a linux
machine, and parse the output so that I can do the abovementioned with
one machine instead of 3-4 (and growing)?
I've got basic bash-scripting knowledge, but I'm not scared to dive
into the deep if only someone would point me to some how-to's and
resources.
how would I go on to sending the SNMP-traps and logging to the database
(using ODBC) ?
Many thanks!
|
Similar Threads
Linear Mode
