Nagios Support Forum

The original syntax I has above worked.

Seems like there is a bug where if the UI Apply fails it doesn't actually tell anybody it failed.

I'm trying to get logs with context that are more then just "X iterations were found". From the previous question I posted only email supports the macro for the actual logs. So now I'm looking into what external API query options I have ... Can I execute a saved query via the REST API? I f...

The install was bad ... I'm now seeing configs change when applying. I'm going to get back to getting my realtime alerts to work and follow up if I my syntax doesn't work.

It's definitely not making changes to those files. No inputs or real-time alerts have their definitions being pushed even when the configuration passes validation.

I'm doing a fresh install right now to ensure there was nothing funky during install that's causing the issue.

I'm fairly confident I've nailed this down to the Apply Config even though it passes validation check is NOT being written to logstash and implemented. I added a new input type/port and it's not there either in the back end config, nor do I see logstash listening. Where can I find more information o...

The actual log entires which trigger the alert should be available to a script just like they are to email. I'd expect any macro that's available to an email should be available to a script.

Should I be seeing these filters being written to "/usr/local/nagioslogserver/logstash/etc/conf.d" directory in one of the conf files? If so I'm not currently seeing that.

I now see the below and I get hits in the query alert but not in the realtime alert.

[message] in "NOTIFICATION"

I'm going to prefix the question saying I know that these should be far and inbetween however I need to generate events for every instance of something found and include the instance. I've tried creating a super simple one that just says message =~ /NOTIFICATION/ as for testing I'm trying to trigger...

I'm wondering if there are more arguments than the count, status, output, and lastrun which are available for alerts? I'm looking for more information about the log events behind the alerts to be passed to an external script.

Thanks