[CentOS] Log monitoring

Wed Jul 6 16:47:00 UTC 2011
Kaplan, Andrew H. <AHKAPLAN at PARTNERS.ORG>

Hi there --

I have been using rsyslog with the LogAnalyzer software to monitor our systems
logs.
 

-----Original Message-----
From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On Behalf Of
Brunner, Brian T.
Sent: Wednesday, July 06, 2011 12:07 PM
To: CentOS mailing list
Subject: Re: [CentOS] Log monitoring

centos-bounces at centos.org wrote:
> Bowie Bailey wrote:
>> On 7/6/2011 5:37 AM, Fajar Priyanto wrote:
>>> Hi all,
>>> Currently I do 'tail -f /var/log/messages | grep something' to
>>> monitor/tune in my iptables rules.
>>> 
>>> Based on your experience, is there any tools do that better like:
>>> - color
>>> - grepping multiple keywords
>>> - some statistic
>> 
>> I don't know about any tools for this, but I did want to point out
>> that grep can handle multiple keywords.
>> 
>> $ tail -f /var/log/messages | grep -e keyword1 -e keyword2
> -e keyword3
> <snip>
> Haven't used them, but cactus? splunk?
And I think you want -F (not -f) so your tail will follow the file
/var/log/messages across logrotates.


Insert spiffy .sig here:
Life is complex: it has both real and imaginary parts.
Life is not measured by the number of breaths we take, but by the
moments that take our breath away. 


//me
*******************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom
they are addressed. If you have received this email in error please
notify the system manager. This footnote also confirms that this
email message has been swept for the presence of computer viruses.
www.Hubbell.com - Hubbell Incorporated**

_______________________________________________
CentOS mailing list
CentOS at centos.org
http://lists.centos.org/mailman/listinfo/centos


The information in this e-mail is intended only for the person to whom it is
addressed. If you believe this e-mail was sent to you in error and the e-mail
contains patient information, please contact the Partners Compliance HelpLine at
http://www.partners.org/complianceline . If the e-mail was sent to you in error
but does not contain patient information, please contact the sender and properly
dispose of the e-mail.