Centralized log server best practice

From: Levi Ashcol (leviashcol@HotPOP.com)
Date: Fri May 31 2002 - 12:22:36 EDT

• Next message: vijay: "Fast Data Access MMU Miss in E450 while booting from Cdrom"
• Previous message: raoul s: "question,ultra5 monitor"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,
We are in the process of creating a centralized log server to monitor
machines' log files. I would like to know gurus best practice doing such
thing.
- What kind of facilities.level messages you guys direct to the log
server ? (kernel.notice, auth.*, .....All ? )
- How do you guys organize log file(s) on the log server ? do you guys
forward all messages to a single file on the log server or create
multiple log files ?
- Do you guys use additional tools to ensure that you monitor every
message from process/daemons/kernel..... ?
- What are the tools you guys use to check/analyze/monitor log files ?
Any GUI tools out there? I heard that there is a tool called logwatch
but not sure if it is the best thing to use !
- Any document/URL describes steps to create a log server and best
practice creating a log server?

Appreciate your help and will summarize.

Levi
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: vijay: "Fast Data Access MMU Miss in E450 while booting from Cdrom"
• Previous message: raoul s: "question,ultra5 monitor"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:24:24 EDT