Case #962042
From my support ticket:
We are using Kiwi Syslog 9.5, primarily accessing the logs through Web Access v1.6.0. Using this Syslog, we have hundreds of thousands of logs a day. It is currently my job to filter through these logs to separate the most important, and act on them if need be. While attempting to create filters for our logs, I found the filter tool to be very poor and not intuitive at all. So, I am making suggestions, hoping to help improve this.
1. Separating the filter criteria (Arguments) into groups. Adding a start parenthesis and an end parenthesis could greatly improve the Arguments, visually and in execution. Otherwise it is very difficult to see where one argument stops and the next begins. ex: (Level is Alert AND Log Message is not like Schannel)OR (Level is Error AND Log Message is like Disk).
2. Adding a Line to the Argument before or after the selected line. There is currently the ability to highlight and select a line to delete it. There needs to be a way to add a line before or after the selected one instead of having to add an empty line at the end and manually copying each line above it, one by one.
3. Building on that last feature, there should be the ability to click and drag lines to reorganize them, or at the least movement buttons up and down when you select a line.
4. Currently when you set a date for the filter and choose Between, it includes the dates set. Logically, it should be from 0001 hours after the date set and until 2359 hours the day before the last date set. OR it should at least be explained that is not the case. Adding a drop down box for including or excluding the set date would also be a valid option.
5. If you need to duplicate a filter and change one single item, you currently have to redo each line. The ability to select a line or an Argument and duplicate it would be very helpful.
Not Filter Related, but still using Web Access
6. The number for Total Logs in the bottom right, is broken. it only reports the number up to the current page being viewed. When someone needs to know how many logs there are, they have to hit the Last Page button and wait until that loads, and look at the number again. When it says Total Logs, it should say the TOTAL count of the logs, regardless of the page being viewed.
7. Also, it should show the total number of pages somewhere on the Log Viewing page. (preferably near the page selection buttons)
