Clear syslog event
Hello
We are using demo version of OpManager and trying to make clear event for syslog message.
Our devices sometimes send messages about EIGRP events. They looks like:
Aug 19 16:51:51: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 300: Neighbor 10.0.30.254 (Tunnel300) is down: manually cleared
Aug 19 16:51:53: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 300: Neighbor 10.0.30.254 (Tunnel300) is up: new adjacency
and the second event should clear the first.
We made syslog rule, that filter only EIGRP messages:
Facility Name: Any
Severity: Notice
Match Text: Neighbor 10.0.30
Alert Severity: Attention
Alarm Message: $Message
Advanced:
Number of Occurrences: Empty
Time Interval(seconds): Empty
Facility Name: local use 7 *** I think here is problem ***
Severity: Notice
Match Text: is up
Unfortunately, no clear events occur.
What are we doing wrong?
We are using demo version of OpManager and trying to make clear event for syslog message.
Our devices sometimes send messages about EIGRP events. They looks like:
Aug 19 16:51:51: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 300: Neighbor 10.0.30.254 (Tunnel300) is down: manually cleared
Aug 19 16:51:53: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 300: Neighbor 10.0.30.254 (Tunnel300) is up: new adjacency
and the second event should clear the first.
We made syslog rule, that filter only EIGRP messages:
Facility Name: Any
Severity: Notice
Match Text: Neighbor 10.0.30
Alert Severity: Attention
Alarm Message: $Message
Advanced:
Number of Occurrences: Empty
Time Interval(seconds): Empty
Facility Name: local use 7 *** I think here is problem ***
Severity: Notice
Match Text: is up
Unfortunately, no clear events occur.
What are we doing wrong?