Paul DiSciascio wrote:
> I'm looking for a good way to share log files on a centralized syslog server
> with about 10-20 people/developers who are familiar with the log formats but
> not very much with unix tools. They want an easy way to dig thru the logs
> and filter out junk they're not interested in, but still have near realtime
> visibility. Obviously, splunk can do this, but it's pricey and their
> documentation seems to indicate that 20 concurrent users would be a lot to
> ask for without a lot of hardware. I really only need an interface capable
> of some rudimentary filtering, and if possible the ability to save those
> searches or filters. Does anyone have any suggestions short of writing this
> myself?
>
>
You might be interested in SEC (simple event correlator) for this
purpose. But, if you just want a presentation interface, logsurfer might
be more what you are looking for. SEC is much more like splunk while
logsurfer is more of a realtime filtering monitor.
_______________________________________________
Discuss mailing list
Discuss@lopsa.org
http://lopsa.org/cgi-bin/mailman/listinfo/discuss
This list provided by the League of Professional System Administrators
http://lopsa.org/
