We have the capability to monitor syslog messages from Unix-based hosts on the network by turning Zenoss Core into a syslog server. The syslog is a standard logging format for Unix-based systems that allow administrators to analyze, troubleshoot, and debug the programs and services running on a device. Zenoss uses the
zensyslog daemon to turn incoming syslog messages into events from any host on the network.
Before we configure our servers to send syslog messages to Zenoss Core, we need to determine the syslog facility and priority we want to monitor. The available facilities include
uucp. The facility specifies the subsystem we want to monitor. For example, we specify the
lpr facility to monitor print activity.
We specify one of the following priorities, listed from the lowest to the highest severity:
emerg. As an example...