Re: Kiwi Syslog + PFsense (parsing firewall log from 2 lines to 1 help)
Acy Forsythe - I would very much appreciate your help with this. I can sen you a log file with 100+ logs, what the best way to send them across, I added as friend, waiting approval so will send once...
View ArticleRe: Kiwi Syslog + PFsense (parsing firewall log from 2 lines to 1 help)
Hi Acy Forsythe I have included the log, and I really appreciate any help from you. ThanksRegardsEilz Date: Mon, 25 Feb 2013 12:02:06 -0600From: solarwindscommunityteam@communications.solarwinds.comTo:...
View ArticleRe: How can i make report of nodes synched with syslog server???
synched means are the nodes configured for the syslog server or not and sending syslog messages. i am using ORION NPM
View ArticleRe: How can i make report of nodes synched with syslog server???
Well, if you want the information out of Kiwi, you have several options. If you just want at a glance information and you have fewer than 20 devices, you can use the real-time statistics window in the...
View ArticleRe: Filtering out certain messages in Kiwi Syslog...
Acy Forsythe Hello, Thew whole message looks like this: Feb 26 15:34:50 172.30.16.5 00331 FFI: port D10-High collision or drop rate. See help. Where D10-High could also be a single digit like D6-High....
View ArticleRe: Filtering out certain messages in Kiwi Syslog...
I was right, it was something really simple and I face-palmed when I figured it out. the [1-16] is not working because it's supposed to be testing for a single character. So you can change it in either...
View ArticleRe: KIWI syslog service manager vs. syslog webaccess
Acy,You have it backwards. I see the information from the SNMP trap in the web access monitor but NOT in the KIWI Syslog Service Manager. I am not sure what filters I may have missed....but under...
View ArticleRe: KIWI syslog service manager vs. syslog webaccess
Greg, Sorry my post was confusing, I don't have it backwards, but I just wanted to cover both bases just in case I did have it backwards. If you are seeing the SNMP messages in the Kiwi Web access,...
View ArticleRe: KIWI syslog service manager vs. syslog webaccess
EDIT:Ok, so I was trying to do too many things at one time yesterday.... Everything below works just fine. When I setup the rule to try and test this for Greg, I used the same rule I am currently using...
View ArticleNeed Help with Kiwi Syslog 8.1.6
Hello, I was asked to enable logging from 3 Cisco Teleprence servers to a Kiwi that hasn't been used much. Since we already have a server my company wants me to use it and not spend any money. The...
View ArticleRe: Need Help with Kiwi Syslog 8.1.6
Hello Ian, and welcome to the thwack community! There are numerous methods of extracting data, archiving, etc... but really, the power of Kiwi is in it's versatility and configurability, it's not just...
View ArticleRe: Need Help with Kiwi Syslog 8.1.6
I am trying to mainly track 3 ip addresses (telepresence servers) using the catch all file or separate files. Is there a way to set this up? I have next to no knowledge of the service. Thanks for the...
View ArticleClik here to view.
Re: KIWI syslog service manager vs. syslog webaccess
Acy,AS you see from the image below, under Actions I have "new action" and to the right you can see the type is "run script" I am not sure what you mean by running scripts in an "unchecked" rule....
View ArticleRe: KIWI syslog service manager vs. syslog webaccess
Are you seeing the messages in the Display? If not, but you are seeing them in Web Access, and you have no filters, then it has to be the script. By "Unchecked Rule" I meant that the check-mark next to...
View ArticleRe: Need Help with Kiwi Syslog 8.1.6
Sure, if you are certain you want to use the log files to capture data, then regardless of whether or not you want to maintain seperate files or not, you can change how much data is kept. In the "Log...
View ArticleHow to use regexp to save some text between tags to a field in a database
I'd like to know how I can use regexp or Mid(),Instr() to save some text between tags to a field in a database. For example: src=192.168.0.1, srcname=etcetc I want only 192.168.0.1 out from the text,...
View ArticleRe: How to use regexp to save some text between tags to a field in a database
Here are two scripts on thwack that do something simillar in two different ways: http://thwack.solarwinds.com/docs/DOC-63862 http://thwack.solarwinds.com/docs/DOC-125653
View ArticleRe: Monitor Cisco Firewall and Router "Bad Password" Attempt Failures
The level is probably ok, the failed login for bad password message is a "Warning" level message and you're getting Info if you received the message you posted. But... the command under config term...
View ArticleRe: Monitor Cisco Firewall and Router "Bad Password" Attempt Failures
Syslog is definitely easier to read, SNMP requires the individual OID to be decoded. In the Cisco world it is important to have both since not all messages exist in both.
View ArticleRe: Monitor Cisco Firewall and Router "Bad Password" Attempt Failures
What Cisco model is this? Also, do you know what the authentication method is? Local or something like RADIUS or TACACS?
View Article