|
AggreGate Network Manager provides a set of preconfigured alerts for Syslog messages as described below.
Syslog alert triggers contain at most three conditions joined with logical AND (conjunction) operations. They check if the message:
| • | contains a certain string |
| • | has facility equal to a certain value |
| • | has severity equal to a certain value. |
The following table describes Syslog alerts and their trigger conditions.
Name
|
Description
|
Trigger Condition
|
Message contains
|
Facility
|
Severity
|
syslogAlertFailedLogin
|
Failed Login
|
FAILED LOGIN
|
Security (4)
|
Notice (5)
|
syslogAlertKernelAlert
|
Kernel Alert
|
|
Kernel (0)
|
Alert (1)
|
syslogAlertKernelEmergency
|
Kernel Emergency
|
|
Kernel (0)
|
Emergency (0)
|
syslogAlertMailCritical
|
Mail Critical
|
|
Mail (2)
|
Critical (2)
|
syslogAlertMailEmergency
|
Mail Emergency
|
|
Mail (2)
|
Emergency (0)
|
syslogAlertSecurityOrAuthorizationAlert
|
Security Or Authorization Alert
|
|
Security (4)
|
Alert (1)
|
syslogAlertSecurityOrAuthorizationEmergency
|
Security or Authorization Emergency
|
|
Security (4)
|
Emergency (0)
|
syslogAlertFtpLogOut
|
FTP Log-Out
|
FTP session closed
|
FTP (11)
|
Informational (6)
|
syslogAlertFtpLogIn
|
FTP Log-In
|
FTP LOGIN FROM
|
FTP (11)
|
Informational (6)
|
syslogAlertSuperuserLoginSuccess
|
Superuser Successful Login
|
opened
|
Security (4)
|
Notice (5)
|
syslogAlertUserLoginSuccess
|
User Successful Login
|
session opened
|
Security (4)
|
Informational (6)
|
syslogAlertDaemonAlert
|
Daemon Alert
|
|
Daemons (3)
|
Alert (1)
|
syslogAlertDaemonEmergency
|
Daemon Emergency
|
|
Daemons (3)
|
Emergency (0)
|
syslogAlertUserLevelAlert
|
User-Level Alert
|
|
User (1)
|
Alert (1)
|
syslogAlertUserLevelEmergency
|
User-Level Emergency
|
|
User (1)
|
Emergency (0)
|
Custom alerts for Syslog messages can be easily created by users for their specific needs using the described alerts as examples.
|