Re: Parsing Syslog and Acting on it, using other input too

[Kevin Stone <kstone () inetlabs net>]

Look at Logstash, http://logstash.net.

Rsyslog can do a bit, on Windows you could look at the Solarwinds Kiwi
syslog server.


On Thu, Aug 29, 2013 at 9:10 AM, Jason Biel <jason () biel-tech com> wrote:

> You should look into SPLUNK (http://www.splunk.com/), it will
> collect/store
> your syslog data and you can run customized reports and then act on them.
>
>
> On Thu, Aug 29, 2013 at 8:03 AM, Kasper Adel <karim.adel () gmail com> wrote:
>
> > Hello.
> >
> > I am looking for a way to do proactive monitoring of my network, what I
> am
> > specifically thinking about is receiving syslog msgs from the routers and
> > the backend engine would correlate certain msgs with output/data that i
> am
> > receiving through SSH/telnet sessions. What i am after is not exposed to
> > SNMP so i need to do it on my own.
> >
> >
> > I am sure there are many tools that can do parsing of syslog and acting
> > upon it but i wonder if there is something more flexible out there that I
> > can just re-use to do the above ? Please point me to known public or
> > home-grown scripts in use to achieve this.
> >
> > Regards,
> >
> > Sam
>
>
>
> --
> Jason