The OnBoard includes syslog-ng, which can be configured through either the Web Manager or the cycli utility to filter log messages sent by system daemons (such as messages from the cron daemon, crond) and by connected devices. By default, the /etc/syslog/syslog-ng.conf file monitors messages from the following two files:
• Notifications can be configured to be sent to an OnBoard administrator by one of the following methods:
•
• syslog-ng allows administrators to set up additional alarm triggers to filter messages based on the messages’ facility, level, or contents.
The following line shows the syntax for a match function.
The following example shows the two match functions filtering for logins and excluding messages that have the user name francisco; the functions are connected by the not operator.
For more information, see syslog-ng v1.6 reference manual at http://www.balabit.com/products/syslog-ng/reference-1.6/syslog-ng.html/index.html#filterfunc.See the following sections for how administrative users can configure notifications and alarms and email: