Syslog messages are monitored by AggreGate Network Manager using the Syslog Server plugin.
|
Syslog is a standard for forwarding log messages in an IP network. The term "syslog" is often used for both the actual syslog protocol, as well as the application or library sending syslog messages. Syslog is a client/server protocol: the syslog sender sends a small (less than 1KB) textual message to the syslog receiver. The receiver is commonly called "syslogd", "syslog daemon" or "syslog server". Syslog is typically used for managing computer systems and performing security audits integrating log data from many different types of systems into a central repository. |
AggreGate Network Manager acts as a Syslog Server (receiver), as it collects and processes Syslog messages from multiple Linux/Unix machines.
On receiving a message, the Syslog server fires the corresponding AggreGate event. The data contained in the original message is included in the generated event. Thus, Syslog messages can be monitored (processed, traced, displayed, filtered) just like conventional AggreGate events.
See Syslog Server plugin for details.