Hey guys,
our webapplication team wants to monitor specific log-files for specific entries. For example the words "memory" or "sql".
After searching a bit i found the sam template "Log Parser (Perl)" for linux.
After editing the template my linux colleague created some fake entries. After polling the sam template the statistic values of "Total number of Strings found", "Number of newly found strings" and "Found string in # position" changed. So first of all the template is working.
My first thought, was to say "If the statistic value of Number of newly found strings is greater than 1, the component goes into warning and an alert will trigger". Probalby this didn't work well because the component also counts old messages.
Now my question is, how to alert on one of these component?
Probably the webapplication team wants to be informed when a new event occurs.
Anyone an idea or tips
Greetings
Andreas
