Originally posted by: gwhynott
I'm sending traps and syslog messages to a syslog server where we are watching the logs with a log parser. I am looking for documents on what syslog messages would look like coming from the heads, ones which would be intresting to us (disk/psu failures, quota exceeds and similar). I realize this info can be sent to you via email and other methods.
Is there a reference of what the messages would look like so that i can pre define my regex's on the log parser? For example, when someone logs in it'll generate a message like this:
"Information: User supervisor has logged in from SSC:192.0.2.1"
I'd like to see what the strings would look like for various other events, without waiting for one to happen.