Hello, I've been looking at Splunk for a while: http://www.splunk.com/download
it has modules for system logs + apache and many others yet also seems very easy to extend with scripts. It's available as an rpm which may(!) make life easier. The free version should be sufficient for your needs.
Once your data's on the reporting machine it seems you can configure alerts / reports / event response scripts in a pretty flexible manner. There's fancy graphs to amaze the manager!
http://www.splunk.com/article/2186One of the cooler aspects in my opinion is that you can annotate certain recurring messages with significance / response information. Splunk also provides a commercial service where they give you access to their database of annotations which seem to do some type of event correlation.
There also seems to be a fairly useful collection of user contributed extensions
http://www.splunkbase.com/apps/All/?sort=downloadsI've never used the software but it might be something worth looking into. The download page claims it only takes 5 minutes to configure!!! (LOL)
~Andy Quoting Mike Raley <[EMAIL PROTECTED]>:
Greetings Vaguers, I have been doing alot of research on System, Network and Performance monitoring tools that a small IT shop can use to keep a close eye on a small web cluster. After an attempt at installing zabbix which I feel free to admit was an unmitigated disaster, I decided to seek the knowledge of the wise ones (eg all of you!) I'm trying to determine a good suite, or (preferably) a single application to use for monitoring. Preferably available as RPM distribution (for ease of maintenance), has the ability to monitor logs, system and application performance, as well as service status (eg, is apache up on a given machine?) and most importantly, simple enough that a single busy sysadmin can keep an eye on everything w/out spending too much time doing it. I've narrowed the list to what I believe to be a few good contenders and was hoping that anyone might chime in with their experiences with, opinions of, and general feelings on them. The list as currently stands is: Nagios: A Tried an True solution, but doesn't have everything I'm looking for. Webalizer: web server log file analysis program, part of the whole which I am looking for. Zabbix: Alot of potential, installation is a nightmare, and documentation is poor Zenoss: Looks to be a good tool, but does not contain all of the functionality I am looking for HypericHQ: Looks to be a good choice to do everything GroundWork: Appears to pull together several other projects. So, does anyone have any strong opinions, experience, or would just like to chime in on something I missed? Many thanks! Mike
binui5VY21Lqr.bin
Description: PGP Public Key
