Hi
I'm running Kiwi Syslog version 9.2.1.
We get a daily "Daily Syslog statistics for 24 hour period" e-mail sent on a daily basis. Now I don't check the stats very often but I have just checked the last 2 days stats and noticed something weird.
When I checked the top 20 hosts I noticed a device I wouldn't expect to see as a top talker.
Wednesdays stats
+--------------------------+------------+------------+
| Top 20 Hosts | Messages | Percentage |
+--------------------------+------------+------------+
| edilhcr-ts-1 | 7729961 | 78.53% |
Thursday stats
Top 20 Hosts | Messages | Percentage |
+--------------------------+------------+------------+
| edilhcr-ts-1 | 2522477 | 78.42% |
This is one of our Cyclades console servers. Now that is a lot of messages coming from that device. When I checked the folder where the file for that device should be kept and the folder was empty. I then did a search on the F and also the C drive to see if maybe the syslogs for that device were going to another folder but they were NOT.
Has anyone seen this before?
Cheers
Jay
