I am looking for the exact same functionality. Here is my example:
1279: Feb 21 11:32:34: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 100: Neighbor 172.16.30.xx (Vlan200) is down: Peer goodbye received
I would like to have this syslog message parsed for the "172.16.30.xx" and then craft a syslog alert using variables from the SW node tied to 172.16.30.xx.
we went ahead and deployed the change to switch and router configurations to send the syslog and trap information directly to the Solarwinds servers at the same time as we weer updating other standard parts of the configurations.