Hi
I would like to get a little fancy with some syslog alert filtering.
I have an alert setup with a sql filter to notify on facility ='Authpriv'. If anyone does sudo, I get a notice.
I need to exclude one host from this alerting.
facility ='Authpriv' not hostname 'noiseysrvr';
Any suggestions? Previous attempts to filter sql statements on hostname have been unsuccessful
Filtering in syslog
Moderators: Developers, Moderators
Who is online
Users browsing this forum: No registered users and 4 guests