I'd like to find where i can see which rule is tagging messages as they come in to the Log Viewer console. I have 800 different Rules, and a couple of them seem to be tagging Logs for incorrect vendors. I'd like to check the rules that have tagged these messages, but i can't effectively go through 800 rules one at a time. I'm hoping there's some log messages on the system that would indicate which Rule was used to tag.
Top Replies
Parents
-
-
-
-
Well i was able to come up with an easy workaround that got me what i was after. I cloned an already existing Log Alert, and changed the trigger condition to only a vendor that i knew wasn't a legit target but was still being tagged.
and said include Processing Rule where "is not empty".
In the trigger action, i put 3 variables, the Log Message, the Rule Name, and Rule Definition ID.
It didn't take long to trigger, and as soon as it did, i see in the alert message the name of the rule that triggered the alert.
And sure enough, after going to that rule, i found that it did not have any conditions or limitations applied, corrected it, and haven't seen any improperly fire since.
-
Well i was able to come up with an easy workaround that got me what i was after. I cloned an already existing Log Alert, and changed the trigger condition to only a vendor that i knew wasn't a legit target but was still being tagged.
and said include Processing Rule where "is not empty".
In the trigger action, i put 3 variables, the Log Message, the Rule Name, and Rule Definition ID.
It didn't take long to trigger, and as soon as it did, i see in the alert message the name of the rule that triggered the alert.
And sure enough, after going to that rule, i found that it did not have any conditions or limitations applied, corrected it, and haven't seen any improperly fire since.