Is anyone aware of any linux utility that can monitor logs in realtime and trigger events based on specific log content? Thanks.
+1
A:
There's a package called sec or Simple Events Coordinator that I use to detect when an unregistered computer gets a DHCPACK.
Tom Ritter
2009-02-26 21:50:16
+1
A:
tail -f "path to log file"
Can monitor your logs in real-time, but it won't raise any events.
What do you mean by event triggering? Do you want to run certain commands when a log message appears with a certain content?
Ben S
2009-02-26 21:50:33
e.g. send an email when the log prints out "System ready to blow up, please stand by"
Steve B.
2009-02-26 21:51:32
You can route different log levels to different files in syslog and for instance when you get a critical error "tail -f /var/log/critical | mail <stuff here>" grabs it and sends an email.
frgtn
2009-02-26 22:10:12
@Steve B. Shouldn't that be "System ready to blow up, RUN AWAY!" ?
Chris Huang-Leaver
2009-10-01 08:23:58
+3
A:
Log Surfer
From: http://www.crypt.gen.nz/logsurfer/#download
Logsurfer is a program for monitoring system logs in real-time, and reporting on the occurrence of events. It is similar to the well-known swatch program on which it is based, but offers a number of advanced features which swatch does not support.
Elijah
2009-02-26 21:54:22
+1
A:
you could pipe your logfile through awk and call any desired action on specified patterns.
Jens Schauder
2009-02-26 22:06:46
A:
Fernando
2009-09-30 21:39:06