Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 483
  • Last Modified:

Kiwi Alerts Issue with Cisco 2960 switch

I am trying to setup Kiwi Alerts for my Cisco devices.  I would like the Kiwi Server to accept ALL logging levels except DEBUG, BUT only email me if there is a REAL issue with a device.

I currently have 10 TVs connected to the 2960 switch and everytime they are turned on or off I get an alert because the interfaces have gone either UP or DOWN.

How can I stop getting emails when these interfaces go up or down while still getting alerts for true emergencies?
0
BSModlin
Asked:
BSModlin
  • 2
1 Solution
 
Don JohnstonCommented:
Change the notification to level 2.

emergencies = 0
alerts = 1
critical = 2
errors = 3
warnings = 4
notifications = 5
informational = 6
debugging = 7
0
 
AkinsdNetwork AdministratorCommented:
To achieve logging all notifications to syslog except for debug (level 7) and only receive email alerts when events are critical, you will need a combination of solutions.

The default trigger feature in Kiwi Syslog is based on frequency of message and not severity of message.

You can experiment with adding a new filter and set the actions you want in the filter. I haven't done this setup before so I can't really confirm if it works or not but may be worth trying - See attached screen shot.
Syslog
Your other  alternative is to forward the messages to a messaging system for additional processing. You will then create rules and email notification from that system.
As a matter of fact, you may be able to use your existing email rules. When the messages coming, identify unique or distinguishing words in the message and move the email as desired.

I hope this helps.
0
 
BSModlinAuthor Commented:
Perfect... thank you.. and how can i get each device to display on its own drop down correctly?
0
 
AkinsdNetwork AdministratorCommented:
I mentioned that I haven't used this particular setup before but I think the filter will be applied to all the devices.

I use the basic setup and only send critical messages to syslog unless I'm troubleshooting. The hard drive can fill up pretty quickly the higher you go on the syslog levels
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now