Syslog dashboard

Use the out-of-the-box Syslog dashboard to monitor the syslog that you are collecting and keep your network devices always available.

The dashboard about syslog displays the following information:

  • Log volume statistics from various devices and connector hosts
  • Top 5 device and connector hosts by log distribution 
  • Log distribution by severity and Ident
    Ident is used to identify the system or subsytem that is sending the logs; for example, Cron subsystem (CROND), SSH daemon (sshd), dhcp subsytem (dhclient). 

For instructions about creating or editing dashboards, see Configuring-dashboards-with-additional-customizations. For information about dashboard concepts, see Creating-and-customizing-dashboards.

Related topics

Modifying-date-and-time-format-in-dashboards

Sharing-and-embedding-dashboards

Adding-and-configuring-a-data-source

The following image shows the analysis of the Syslogs collected in BMC Helix Log Analytics with sample data:

SyslogDashboard.png

For a list of icons and operations that are common across dashboards, see Product-overview.

To view the dashboard

  1. From the navigation menu menu_icon.png, click Dashboards.

  2. Click the Log Analytics folder and then click Syslogs.

    Tip: Quick access from the home page

    To quickly open the dashboard from the home page, mark it as a favorite by using the star icon. Additionally, after you open a dashboard, it is available under Recently viewed dashboards on the home page.

Panels in the Syslogs dashboard

The following table describes the panels in the Syslogs dashboard:

Panel

Description

Example

Dashboard filters

Displays the following filters to view information on the dashboard:

  • Syslog Hostname
  • Connector Host
  • Severity
  • Ident

By default, the dashboard displays the data for the last 24 hours. You can filter the data by using the time range global filter.

Filters_SyslogDashboard.png

Log volume statistics

Displays total log volume and the Syslog sources from where logs are being collected:

  • Number of Syslog devices
  • Number of connector hosts

LogVolStats_SyslogDashboard.png

Top 5 log distribution by syslog device

Displays the top 5 hostnames by log volume from where you are collecting logs.

DistributionByDevice_SyslogDashboard.png

Log distribution by connector host

Displays the volume of logs collected by each connector. 

ConnectorHost_SyslogDashboard.png

Log distribution by severity

Displays the distribution of the type of logs that you are collecting (information, notice, warning).

DistributionBySeverity_SyslogDashboard.png

Log distribution by Ident

Displays the log distribution by the Ident of the systems or subsystems that are sending the logs.

DistributionByIdent_SyslogDashboard.png

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*