Setting Alert Detail Criteria For Syslog Messages

Setting Alert Detail Criteria for Syslog Messages

When setting alert detail criteria for alerts originating from Syslog messages, specific string values can be set.

String Values

The following values are valid when entering Details Text for Syslog message alerts. The operator value is usually set to equals ('=').

Details Text	Valid Details Value
Facility	user
Severity	error
Raw Text	*This is a test message (Raw Text is the actual message that is received prior to formatting)

Details Text

Valid Details Value

Facility

*user*

Severity

*error*

Raw Text

*This is a test message

(Raw Text is the actual message that is received prior to formatting)

EXAMPLE: Examples of specifying alert detail criteria for Syslog messages may be similar to:

Details Text: Facility
Details Value: =*user*

Details Text: Severity
Details Value: =*error*

In the above example , an alert is generated for any Syslog Message Severity message with a value of *error*, that also meets other specified criteria.