Hi, In looking at the documentation, I was unable to determine if there is the capability to have different alert levels logged to the file alerts.log versus what is logged in the database. (Background: We are getting a few million events per day and it really seems like that is too much for OSSECDB_ExtJS to handle so I was thinking about sending only level 7 and higher to the database, while keeping all alerts logged.)
The config option <alerts> --> <log_alert_level> seems to apply to both file and database. Is there an equivalent <level> configuration option for <database_output> like there is for <syslog_output>? Thanks, Steve
