IBM Lotus Domino is running on SUSE Linux. Lotus Domino is configured to
log events in Syslog.. i.e we are receiving 'domino event' in
/var/log/messages.

I configure the event source(Domino/SUSE) to send logs to SLM:

Code:
--------------------

destination loghost { tcp("172.16.241.146" port(1468)); };
log { source(src); destination(loghost); };
--------------------


logs(including 'domino event') started comming to SLM via
'Generic'/SUSE Linux' Collector.

I then set the 'Collector Plugin' to 'IBM Lotus Domino' (Collection >
Event Sources ) so that Domino events parsed via Domino Collector... and
now only 'domino event' are comming/displaying(when click on Search)
from that event source.

I have a question...how can I collect logs from a single event source
as
box1 > connected via Syslog connector > connected to Domino Collector
.... to collect Lotus Domino Events only
box1 > connected via Syslog connector > connected to SUSE Collecotor ...
to collect all the syslogs else the 'domino event'


--
sharfuddin
------------------------------------------------------------------------
sharfuddin's Profile: https://forums.netiq.com/member.php?userid=1016
View this thread: https://forums.netiq.com/showthread.php?t=47678