Captured Events

Captured events are those events that the system does not specifically know will occur in advance. De-duplication is performed on these events, but in some cases may need to be tuned. By default, no auto-clearing is done on captured events. Event transforms must be used to create the auto-clear correlations.

These standard daemons are responsible for collecting captured events:

  • zensyslog- Events created from syslog messages.

  • zentrap- Events created from SNMP traps and informs.

Any ZenPacks you install may optionally include their own daemons.