Monitoring Linux systems using SSH

Question

On 4/18/2020 at 2:55 PM, raul.rtr said:

So with current SSH based Linux datasources we miss important required capabilities:

- Linux text log&nbsp;monitoring: Basically, we need to be able to monitor specific log files in a target server for the appearance of specific error patterns&nbsp;on them, and raise an alert in case any of this error occurs. The rule to trigger the alarm must manage the triggering of the alarm depending on the recurrence of the errors and probably other rules. The datasource should be able to manage checkpoints in order to be aware what was the last log line read ensuring that always read only new content in monitored files.

-&nbsp;OS process monitoring: we need to be able to monitor the presence of OS processes and if the number of processes instances required are in execution and probably other rules.

&nbsp;

I suggest you start a new thread/topic. You can also try taking one of the existing linux ssh DataSources and customizing the Groovy code to do the work you need.

Answer

This thread was split from here. @raul.rtr, tagging you for visibility. You said:

Quote

Hi,

Currently starting the implementation of Logicmonitor in our organization, replacing an old agent based monitoring tool. Probably&nbsp;one of the main reasons to select LM has been the agent-less monitoring capabilities.

SNMP based linux monitoring is not an option for us, neither installing LM collectors in each monitored server.

So with current SSH based Linux datasources we miss important required capabilities:

- Linux text log&nbsp;monitoring:&nbsp;Basically, we need to be able to monitor specific log files in a target server for the appearance of specific error patterns&nbsp;on them, and raise an alert in case any of this error occurs. The rule to trigger the alarm must manage the triggering of the alarm depending on the recurrence of the errors and probably other rules. The datasource should be able to manage checkpoints in order to be aware what was the last log line read ensuring that always read only new content in monitored files.

-&nbsp;OS process monitoring: we need to be able to monitor the presence of OS processes and if the number of processes instances required are in execution and probably other rules.

Thanks.

Raúl

&nbsp;

Quote

Linux text log&nbsp;monitoring:&nbsp;Basically, we need to be able to monitor specific log files in a target server for the appearance of specific error patterns&nbsp;on them, and raise an alert in case any of this error occurs. The rule to trigger the alarm must manage the triggering of the alarm depending on the recurrence of the errors and probably other rules. The datasource should be able to manage checkpoints in order to be aware what was the last log line read ensuring that always read only new content in monitored files.

You would accomplish this via a custom EventSource.

Quote

-&nbsp;OS process monitoring: we need to be able to monitor the presence of OS processes and if the number of processes instances required are in execution and probably other rules.

You can do this with a custom Groovy based Datasource making use of the Expect library built into the collector.

Forum Discussion

Monitoring Linux systems using SSH

Related Content

Process monitoring (Linux)

Linux collector, system in Minimal Monitoring

What permissions needed for ssh user on Linux boxes to monitor

How do you monitor Running Services on Linux boxes?

Process Monitoring

Recent Discussions

Provide LogicMonitor explicit URLs for whitelisting to enable outbound connectivity

Topology Map Icons

Cycle Alerting when SDT is set

Feature Request: Poll Now - evaluate complex data points

Cisco Stack Switchs