Syntax description of Alerting Device/Enity match
Dear All
Is there a description of all operators possible in the Device Entity match ? So far I have found/used: lt, gt, match
Is there a possibility to "or" things together in stead of default "and" so that eg this is possible:
(os match linux) and (os match windows)
Regards
Matthias
On 2014-01-30 05:19, Matthias Cramer wrote:
Dear All
Is there a description of all operators possible in the Device Entity match ? So far I have found/used: lt, gt, match
Is there a possibility to "or" things together in stead of default "and" so that eg this is possible:
(os match linux) and (os match windows)
The parser will allow the individual lines to be matched as AND or OR, though the option to change to OR may not yet be exposed.
It's on the list :)
At the moment, the parser is kinda dumb, because, well, writing parsers is hard, ok? :)
adam.
Hi Adam
On 30/01/14 20:27, Adam Armstrong wrote:
On 2014-01-30 05:19, Matthias Cramer wrote:
Dear All
Is there a description of all operators possible in the Device Entity match ? So far I have found/used: lt, gt, match
Is there a possibility to "or" things together in stead of default "and" so that eg this is possible:
(os match linux) and (os match windows)
The parser will allow the individual lines to be matched as AND or OR, though the option to change to OR may not yet be exposed.
It's on the list :)
At the moment, the parser is kinda dumb, because, well, writing parsers is hard, ok? :)
I can live with that, when I know it will get even better than it is already. Thanks for you answer.
Regards
Matthias
-- Matthias Cramer / mc322-ripe Senior Network & Security Engineer iway AG Phone +41 43 500 1111 Badenerstrasse 569 Fax +41 44 271 3535 CH-8048 Zurich http://www.iway.ch/ GnuPG 1024D/2D208250 = DBC6 65B6 7083 1029 781E 3959 B62F DF1C 2D20 8250
participants (2)
-
Adam Armstrong -
Matthias Cramer