Log filter | Log collection solutions

#1 klambi 5 years ago

Hi, I just want to fileter the windows logs. I mean I dont want to collect the info type, because I need just the warning and the critical types. Where and how can I set this settings up?

Thanks!

Permalink

#2 b0ti Nxlog ✓ 5 years ago

#1 klambi

Hi, I just want to fileter the windows logs. I mean I dont want to collect the info type, because I need just the warning and the critical types. Where and how can I set this settings up? Thanks!

You can either use the QueryXML or the NXLog Exec directive to filter. See the Advanced Filtering Options for sysmon, the last two are applicable to your case.