|
Protocol |
Session Log |
|
|
|
|
Description |
Write all events to ECS Session log FileName
as they arrive. |
|
|
|
|
Comments |
This writer is unsupported and is for EventGnosis professional services use only. If FileName is missing, blank or invalid, disable the writer. If Not is missing, blank or invalid the delays will be written. The ECS must have write permission for FileName. Session Logs are EventGnosis-specific files that capture event streams and timing and are "replayable" by the ECS Session Log Reader. |
<destination objectId="SessLogWriter1" type="SessionLogWriter" stdout="FS.DemoAlive"> <parameter type="Host">errLogHost</parameter> <parameter type="Port">21033</parameter> </destination>
Incoming ECS event XML:
<event xmlns:ev="http://www.eventgnosis.com/"> <ev:host>elmo</ev:host> <ev:app>Win Security Log</ev:app> <ev:log>Windows Log</ev:log> <protocol>Windows</protocol> <ev:msg>The SNMP service is going down.</ev:msg> </event>
Resulting write to file:
{
ev:host=elmo|ev:app=Win Security|ev:log=Windows Log|protocol=Windows|ev:msg=The SNMP service is going down
}