I wanted to confirm whether Zenoss supports collection the logs
(from syslogs / win32 eventlog) from my servers?.
I understand it can trigger events based on certain logs, but does
it support keeping them for, say, 3 months, regardless of whether
they triggered an event or not?
Could I correlate events from different sources, to see a series of
events (eg, compare side by side the logs from different servers on
the same network, etc)....
Zenoss runs a a syslog server by default that you can send logs to
from devices that support syslog. It can also collect eventlogs from
Windows systems natively (no agent required.) You can use the built-
in event mapping system to treat these incoming logs however you want.
One thing you can do with logs that don't really classify as "events"
would be to move them directly to the archive so that they'd still be
viewable, but not clutter the event console. You can use the per-user
customizable "Event Views" to do fairly specific views of your active
and archived (history) events if you'd like to see logs from multiple
sources one a single pane of glass.
_______________________________________________
zenoss-users mailing list
[email protected]
http://lists.zenoss.org/mailman/listinfo/zenoss-users
