Hi Josine;
Thanks a lot for your help;
Here is the output of the command you asked to be run :
FWGPRSMUS:FWGPRSMUS01(M)-> get log setting
Levels: 0=Emergency, 1=Alert, 2=Critical, 3=Error, 4=Warning, 5=Notification,
6=Information, 7=Debugging, '-' = disabled
Module Console Internal Email SNMP Syslog
system 01234567 01234567 012--5-- 012----- 01234567
Module WebTrends NSM PCMCIA
system 012--5-- 01234567 01234567
the output shows that the "alerts" are sent by SNMP, 012-----
we can disable the alerts to be advertised to the NMS using "unset log module system level alert destination SNMP" , is this the right way to do it ?
I just wanna know if there are any other important logs with "alert" level to be sent to the NMS, other than Land attacks & Port scan
because using the command above will prevent all the logs at alert level to be advertised by SNMP
Is it possible for us to filter alarms based on the description of alarms and not by log level?
For example, we would like to filter all Land Attacks, Port Scan, Ping of Death, etc, not to be sent thru SNMP?
We are afraid that we will not be able to send other significant alarms thru SNMP if we filter by log level.
Message Edited by lvl1s7a on 02-23-2009 06:48 AM