Monitor the Size of Multiple Log Files
How to Monitor and Alert on the Growth of Multiple log files
Below, make sure the WARNING Threshold is greater than the CRITICAL threshold:
[root@nagios001 ~]#
[root@nagios001 ~]#
[root@nagios001 ~]# ./logrobot localhost /tmp/logXrayTesting autonda /var/log/nagios 60m '.' '.' 1 0 MultiLogGrowthChk -ndfoundn
OK: [/var/log/nagios][3] nagios.debug:P=(=46124)_F=(0)_R=(lnsrd=(46124)=lnct~(1059388)) nagios.log:P=(=41353)_F=(5)_R=(lnsrd=(41353)=lnct~(602640)) servicenow.log:P=(101)_F=(130s)_R=(0,101=101)
[root@nagios001 ~]#
[root@nagios001 ~]#
[root@nagios001 ~]# ./logrobot localhost /tmp/logXrayTesting autonda /var/log/nagios 60m '.' '.' 1 0 MultiLogGrowthChk -ndfoundn
CRITICAL: [/var/log/nagios][3] servicenow.log:P=(0)_F=(12s,138s)_R=(101,101=0), nagios.log:P=(1)_F=(5)_R=(1(lnsrd)=0,1(rnge),alnct(604839))
[root@nagios001 ~]#
[root@nagios001 ~]#
(OR)
[root@nagios001 ~]#
[root@nagios001 ~]# ./logrobot localhost /tmp/logXrayDirTest autonda /var/log 60m '.' '.' 1 0 MultiLogGrowthChk -ndfoundn
WARNING: [/var/log][5] lastlog:P=(1)_F=(115s)_R=(0,0=0)
[root@nagios001 ~]#
[root@nagios001 ~]#
[root@nagios001 ~]# ./logrobot localhost /tmp/logXrayDirTest autonda /var/log 60m '.' '.' 1 0 MultiLogGrowthChk -ndfoundn
CRITICAL: [/var/log][5] lastlog:P=(0)_F=(11s,120s)_R=(0,0=0) up2date:P=(0)_F=(11s,2828s)_R=(18,18=0) osad:P=(0)_F=(11s,69s)_R=(87179,87179=0) secure:P=(0)_F=(98)_R=(0(lnsrd)=0,0(rnge),alnct(1225523))
[root@nagios001 ~]#
Log File Content
Scan content of log files for new occurrences (or lack thereof) of specific keywords, strings or patterns.
Log File Size
Monitor the sizes of single or multiple log files - alert if log size breaches predefined thresholds.
Log File Growth
Monitor the growth of single or multiple log files - alert when the monitored logs stop receiving new data.
Log File Timestamp
Monitor the timestamp of single or multiple logs. Alert, if logs are older than X amount of minutes or hours.