nsclient++ eventlog real-time command question

Support forum for Nagios Core, Nagios Plugins, NCPA, NRPE, NSCA, NDOUtils and more. Engage with the community of users including those using the open source solutions.
Post Reply
chunsuk4u
Posts: 2
Joined: Wed Oct 18, 2023 8:02 pm

nsclient++ eventlog real-time command question

Post by chunsuk4u »

hi!
I'm using Nagios for system monitoring. The Ubuntu series is working perfectly in all respects, and with the addition of Windows Server, I am trying to monitor it using NSClient++, but the problem is that I don't know how to activate the event log in real time. So I'm looking for advice, so I hope it helps. The NSClient++ settings are as follows.

[/modules]
NSClientServer = enabled
CheckLogFile = enabled
CheckEventLog = enabled
CheckNSCP = enabled
CheckSystem = disabled
CheckDisk = disabled
NSCAClient = enabled
NRPEServer = enabled
CheckExternalScripts = disabled
CheckHelpers = disabled
SimpleCache = enabled
SimpleFileWriter = enabled

[/settings/NSCA/client/targets/default]
address=192.168.100.100
password=password
encryption=0

[/settings/NSCA/client]
channel=NSCA
hostname=VM999

[/settings/eventlog/real-time]
debug = false
enabled = true
log = application, system
destination = NSCA

[/settings/eventlog/real-time/filters/evt_log]
log = system
target = NSCA
filter = level IN (error) AND (id NOT IN (1)) AND (id NOT IN (36874) OR source NOT IN ('Schannel')) AND (id NOT IN (36887) OR source NOT IN ('Schannel' )) AND (id NOT IN (36888) OR source NOT IN ('Schannel')) AND (id NOT IN (7030) OR source NOT IN ('Service Control Manager')) AND (id NOT IN (12292) OR source NOT IN ('VSS')) AND (id NOT IN (36870) OR source NOT IN ('Schannel'))
severity = warning, error

I would like you to tell me how to specify a command on the Nagios server to view the event log in real time.

ex) ./check_nrpe -H 192.168.100.100 -c check_eventlog -a log=system
Is it possible to monitor the event log in real time by executing a command like (ex)?
Top
gwesterman
Posts: 268
Joined: Wed Aug 23, 2023 11:29 am

Re: nsclient++ eventlog real-time command question

Post by gwesterman »

Hi @chunsuk4u,

I am not certain I entirely grasp your question, but nsclient does have the capacity to monitor windows event logs. The documentation on check_eventlog is here. There are also a number of forum posts on the topic (e.g. this one).

Let us know if you need anything else or if I missed the crux of your problem.

Thank you!
Top
chunsuk4u
Posts: 2
Joined: Wed Oct 18, 2023 8:02 pm

Re: nsclient++ eventlog real-time command question

Post by chunsuk4u »

thank you I'll continue testing.
Top
Post Reply

Return to “Open Source Nagios Projects”