Windows event log monitoring

An open discussion forum for obtaining help with Nagios Core. Nagios Core users of all experience levels are welcome here. Subforum have been created for the discussion of Nagios Core and Nagios Plugin development.

NOTE: The SourceForge.net mailing lists have been deprecated in favor of this forum in order to expedite support and provide additional features not available on the old mailing list.

Windows event log monitoring

Postby bosco » Mon Jul 17, 2017 6:22 am

HI can you please share me how to monitor windows event log using nagios.

i need to filter using

event type = application

Source="XLFileMover"
bosco
 
Posts: 20
Joined: Thu Nov 24, 2016 5:34 am

Re: Windows event log monitoring

Postby mcapra » Mon Jul 17, 2017 10:00 am

Check out this article by community member @WillemDH:
https://outsideit.net/real-time-eventlog-monitoring/

This uses a "push" method with NSCA or NRDP and lets NSClient++ be responsible for the active checking of Windows event logs.

You can also leverage a "pull" method with check_wmi_plus which uses WMI:
http://www.edcint.co.nz/checkwmiplus/?q ... mmandlines

You might also consider Nagios Log Server since it is a much more appropriate application for large-scale event log monitoring (it's free up to 500MB/day):
https://www.nagios.com/products/nagios-log-server/
Former Nagios employee - https://github.com/mcapra/
User avatar
mcapra
 
Posts: 2567
Joined: Thu May 05, 2016 3:54 pm

Re: Windows event log monitoring

Postby tmcdonald » Mon Jul 17, 2017 3:04 pm

Thanks for the assist, @mcapra!
Be sure to check out our Knowledgebase for helpful articles and solutions!
User avatar
tmcdonald
Support Manager
 
Posts: 8548
Joined: Mon Sep 23, 2013 8:40 am


Return to Nagios Core

Who is online

Users browsing this forum: Bing [Bot], cerino, Google [Bot] and 28 guests