Captured events

Captured events are those events that the system does not specifically know will occur in advance. De-duplication is performed on these events, but might require tuning. By default, no auto-clearing is done on captured events. Event transforms must be used to create the auto-clear correlations.

The following standard daemons are responsible for collecting captured events:

  • zensyslog- Events created from syslog messages.

  • zentrap- Events created from SNMP traps and informs.

ZenPacks that you install might include their own daemons.