Create a Syslog Alert

AppViewX subscribes to all device-level alerts, where it acts as a syslog listener. Logs of any device added in AppViewX can be viewed as syslogs. However, devices tend to generate a huge amount of data, a Syslog Alert is a convenient way to notify about the specific syslog information that is of importance to you.

To create a syslog alert:

  1. Click and select Alert.
  2. On the Alert screen, click on the top.
  3. On the Settings screen, click the Certificate tab.
  4. On the Settings screen that opens, click the Syslog tab.
  5. In the Alert Name box, enter a name for the alert.
  6. In the Alert Description field, enter a description about the alert.
  7. Select the Severity of the alert: Critical, Fatal, Major, Minor or Notification.
    Note: Instead of adding devices manually, click the Add Search String link and create a search string that automatically assigns all existing objects or devices that match the filter criteria. The benefit of using a search string rather than selecting devices manually is that the search string continues to work in the background and auto-assign all new devices if the devices match the search criteria.
  8. In the Filter dropdown field, ADC is selected by default.
  9. Select the Vendor for the ADC: A10, Citrix, or F5
  10. Select the Object Type for the ADC: FQDN, ServiceIP, VirtualService, ServiceGroup, Server, VirtualServer, or Device
  11. In the Available column, a list of all available ADC objects or devices is displayed based on the object type and vendor selected.
  12. Click beside each object or device to add them to the Assigned column.
  13. In the Regex field, you can enter single or multiple regex patterns/strings in the single text box using commas. The comma is considered as Boolean AND operator.
  14. Click to enter multiple regex patterns/strings in the multiple text box. The Add button is considered as Boolean OR operator.
  15. To remove the regex patterns, click beside the respective text box.
  16. Click the Execute Workflow checkbox and from the dropdown list, select the workflow to trigger.
  17. (Optional) In the Metadata section, enter a key and its associated value in respective fields. This is to define a condition based on which the workflow will be triggered.
  18. To remove the key-value pairs, click beside the respective text box.
  19. To send an email alert, SMTP must be configured. Refer to the Configure SMTP for Email Alerting topic for details on how to do this. When you have finished, complete the following steps to use email as an alert method:
    1. Select the Email Configuration checkbox.
    2. In the Email Address field, enter email addresses to send the alert. Use commas to separate the addresses.
    3. In the Subject field, leave the default text or enter the text that briefly describes the kind of alert the user is receiving in their Inbox.
  20. To use the Simple Network Management Protocol (SNMP) to send the alert, complete the following steps:
    1. Enter the Destination IP for the alert.
    2. Select the Version of SNMP you want to use: V1 or V2.
    3. Enter the port the alert that should be used for the alert.
    4. Enter the Community String for the alert. The string is similar to a user ID or password and allows users to access the requested information on the device.
  21. Click Add to save the alert to the AppViewX system.