Welcome, Guest. Please login or register.

Author Topic: Multiple Filters for Eventlog Alerts  (Read 1676 times)

tuxfrog

  • Guest
Multiple Filters for Eventlog Alerts
« on: March 30, 2015, 04:45:03 PM »
Hi,

we use Nedi Version 1.4.3.
All the Switches send the Syslog to the Nedi Server.
Works...
I enabled Monitoring for all Switches thsi works to.
Now i want to get E-Mails is someone log in to the switch, or if a Port is shut down by the System by BPDU Guard.
I got it, if i set the leve to notice. But i got the to many Mails like Port 1/e1 went down and so on.
It would be easy to set a Filter.
But can i use multiple Filters to discard Events i never want to see in my E-Mail Client?

rickli

  • Administrator
  • Hero Member
  • *****
  • Posts: 2701
    • View Profile
    • NeDi
Re: Multiple Filters for Eventlog Alerts
« Reply #1 on: April 01, 2015, 09:34:25 AM »
You could use event forward with filter set to "bpdu" (and set level to none instead)
Please consider Other-Invoices on your NeDi installation for an annual contribution, tx!
-Remo

jocke92c

  • Newbie
  • *
  • Posts: 19
    • View Profile
Re: Multiple Filters for Eventlog Alerts
« Reply #2 on: April 07, 2015, 11:47:19 AM »
Speaking of syslog. I've completely ignored syslog on our switches. But I'm looking into enabling it. Any suggestions on what I should filter out on my switches and forward to nedi?

tuxfrog

  • Guest
Re: Multiple Filters for Eventlog Alerts
« Reply #3 on: April 08, 2015, 02:34:40 PM »
Yes, we look at flapping ports, suspended Ports by BPDU or auth failures and other.

But i think this is not possible with Nedi Monitoring.
I will try logstash for that.