22. 10. 2010 Patrick Zambelli Log Management

Monitoring the status of the SAFED agent

This article will highlight quickly an approach for the monitoring of your syslog agent in terms of availability and reactiveness.

SyslogView OS agent check defintions

The NetEye SyslogView server includes a  check logic for the monitoring of the syslog agent on the remote server.

The monitoring techniques cover the strategy to launch a Nagios interpretable check command on the remote system via NRPE, or to interpret the web console of the agent.

For the monitoring the SAFED agent we prefer the web based approach since it is a rather easy way to keep track of the agent version installed on the system.

The following image should give an overview of the possible check definitions:

SAFED Service to be running running

Nagios shedulable service check definition:

/usr/lib/nagios/plugins/check_nt -p 12489 -t 50 -H 10.62.7.242 -d SHOWALL -v SERVICESTATE -l safed
safed: Started
Command returned exit status 0

SAFED web interface to be reactive and check for determined agent version

Nagios shedulable web based check definition:

/usr/lib/nagios/plugins/check_http -H 10.62.7.242 -p 6161 -s “NetEye Safed Version 1.3.3”
HTTP OK: HTTP/1.0 200 OK – 9929 bytes in 0.003 second response time |time=0.003073s;;;0.000000 size=9929B;;;0
Command returned exit status 0

Patrick Zambelli

Patrick Zambelli

Project Manager at Würth Phoenix
After my graduation in Applied Computer Science at the Free University of Bolzano I decided to start my professional career outside the province. With a bit of good timing and good luck I went into the booming IT-Dept. of Geox in the shoe district of Montebelluna, where I realized how a big IT infrastructure has to grow and adapt to quickly changing requirements. During this experience I had also the nice possibility to travel the world, while setting up the various production and retail areas of this company. Arrived at Würth Phoenix I started developing on our monitoring solution NetEye. Today, in my position as Consulting an Project Manager I am continuously heading to implement our solutions to meet the expectation of your enterprise customers.

Author

Patrick Zambelli

After my graduation in Applied Computer Science at the Free University of Bolzano I decided to start my professional career outside the province. With a bit of good timing and good luck I went into the booming IT-Dept. of Geox in the shoe district of Montebelluna, where I realized how a big IT infrastructure has to grow and adapt to quickly changing requirements. During this experience I had also the nice possibility to travel the world, while setting up the various production and retail areas of this company. Arrived at Würth Phoenix I started developing on our monitoring solution NetEye. Today, in my position as Consulting an Project Manager I am continuously heading to implement our solutions to meet the expectation of your enterprise customers.

Latest posts by Patrick Zambelli

16. 01. 2024 NetEye, Unified Monitoring
Icinga 2 DSL for Defining the Monitoring Status of Objects with Director
23. 12. 2020 NetEye
Tornado – Getting in Action with Sample Rules
10. 12. 2020 NetEye, Unified Monitoring
Microsoft Icinga2 Agent Deployment Automation with Tornado
05. 05. 2020 NetEye, Unified Monitoring
Import Data Correlation and Automation with Icinga2 Director
15. 04. 2020 Artificial Intelligence
Real-time Observability Thanks to AI
See All

Related Content

Tags: ,

03. 12. 2015 Log Management, NetEye

Trace Windows Administrators Login Activities with Safed

Sometimes it is required to trace login/logoff activities of the administrator in order to be compliant with legal guidelines or simply for security reasons (see also our article "What to do with all those logs"). The Safed agent for Windows can be Read More
06. 12. 2013 Log Management, NetEye

Windows process tracking with Safed

As well known, the Safed agent for Windows can collect events from the event log, filters them and forward the matched records to a centralized syslog server. There are some preconfigured set of events concerning basic activities that have to Read More
03. 01. 2011 Log Management

Log flow integration of multiple IP sources

This new feature has been introduced for the auditing of Cluster installations and hosts with multiple IP addresses. The concept behind the aggregation of flows from different sources resides on the integration of log flows from load balanced hosts or Read More
22. 04. 2010 Log Management

Provvedimento del garante e log dei Firewall Checkpoint

Come sapete il provvedimento del garante richiede di monitorare gli accessi ai sistemi informatici, tra questi uno dei piu' critici e' sicuramente il vostro firewall, come fare a monitorare gli accessi in presenza di un firewall Checkpoint ? Vediamolo insieme: Read More
17. 11. 2009 Log Management, NetEye

NetEye Log Auditing

Sembra che non ci saranno proroghe per il provvedimento del Garante della Privacy per l'archiviazione dei log degli accessi degli amministratori. Entrerà ufficialmente in vigore il 15 dicembre 2009. Come già discusso abbondantemente anche su questi posts, NetEye offre una Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive