Table of Contents
- Getting Started
- Agent-Based Management
- Data Providers
- Directory Services
- Event Log Archiving for JSIG and CMMC Compliance
- Auditing
- Hosts
- Templates
- Template Properties
- Batch Update Templates
- Assign Templates
- Log Management Templates
- SCAP Compliance Monitor
- File and Directory Monitor Templates
- Windows Monitor Templates
- Account Lockout Monitor Template
- Logon Monitor Template
- CPU Monitor Template
- Memory Monitor Template
- Disk Space Monitor Template
- SMART Monitor Template
- Process Monitor Template
- Service Monitor Template
- Performance Counter Monitor Template
- PowerShell Template
- Registry Value Monitor Template
- System Security Monitor Template
- Active Directory User Monitor Template
- Active Directory User Integrity Monitor Template
- Task Scheduler Template
- Clock Synchronization Template
- Defragment NTFS Disks Template
- Windows Audit Policy Monitor Template
- Windows Logon As Monitor Template
- Windows Update Template
- Windows Management Instrumentation (WMI) Templates
- Database Monitor Template
- Directory Service Monitor Template
- DNS Blacklist Monitor Template
- DNS Monitor Template
- Domain Expiration Monitor Template
- Network Speed Monitor Template
- Ping Monitor Template
- Database Table Reseed
- SQL Server Shrink and Backup Template
- SSH Shell
- TCP Port Scan Monitor Template
- Website Monitor Template
- Wake On LAN Template
- SSL Certificate Monitor Templates
- Email Monitor Templates
- SNMP Monitor Templates
- Windows Accounts Templates
- Monitors
- Reports
- File and Permission Reports
- Summary Reports
- Auto-Configurators
- Filters
- Actions
- Database Actions
- Desktop Actions
- Email Actions
- Event Log Actions
- Executable Actions
- File Actions
- IIS IP Address Restriction Actions
- Microsoft Teams Actions
- PowerShell Actions
- Report Actions
- Service Actions
- SMS Actions
- SNMP Trap Actions
- Syslog Actions
- Template Actions
- IIS IP Address Restriction Actions
- Action Variables
- Schedules
- Environment Variables
- Options
- Account Lockout Monitoring and Reporting
- Merging Logs
- SNMP
- SSH Shell
- Syslog
- Exporting and Importing Configuration Objects
- Shared Views
- Active Directory User and Group Filters
- Assign Actions
- Assign Azure Audit Logs
- Assign Consolidated Logs
- Assign Directories
- Assign Disks
- Assign Event Logs
- Assign Files
- Assign Services
- Assign Shares
- Auto-Config Host Assignment Properties
- Define CSV and W3C Log Entry Columns
- Define Log Entry Columns
- Define Log Entry Columns with Regular Expressions
- Executable Status
- Executable Timeline
- Explicitly Assigned Logs
- File Explorer
- General Executable Properties
- Report Columns
- Report Date/Time Ranges
- Report Security Event Log Filters
- Select Folder or File
- Target Files and Sub-Directories
- Command Line Interface
- Server Configuration
- Agent Configuration
- Troubleshooting
- Terminology
Corner Bowl Server Manager
SIEM, IPS, Server Monitoring, Uptime Monitoring and Compliance Software
Simple Filters
Simple Filters enable users to append and order multiple include and exclude search criteria to a single list.
The following log types are supported:
| Supported Log Types |
|---|
| Event Logs |
| Syslogs |
| Text, CSV and W3C Logs |
In this Topic
- How to Create Simple Filters
- Simple Event Log Filters
- Simple Syslog Filters
- Simple Text Log Filters
- Sample Simple Event Log Filter
How to Create Simple Filters
- From the Menu Bar select File | New. The Create New Object View displays.
- Select Filter. The New Filter view displays.
- Use the Name text box to specify a unique name.
- From the Type drop-down select the type of object to create the filter for.
- From the Sub type drop-down select Simple. The Simple Filter View displays.
- Use the Add
button to add new criteria to the filter. - Use the Delete
button to delete the selected criteria. - Use the List
and Table 
toggle buttons to toggle view between a List View and a Table View. - Use the Order By
buttons to change the order in which multiple criteria are applied.
Simple Event Log Filters
- Use the Visibility drop-down to configure to either include or exclude entries that match this criteria.
- Use the Levels
toggle buttons to include or exclude specific levels. - Use the Search Text text box to specify the message search criteria.
- Optionally use the Match Case
to match the case. - Optionally use the RegEx
to search using regular expressions.
- Optionally use the Match Case
- Use the Sources text box to specify the Source to search for. Comma-separate multiple items.
- Use the Categories text box to specify the Source to search for. Comma-separate multiple items.
- Use the Event IDs text box to specify the Event IDs to search for. Comma-separate multiple items. Dash-separate Event ID ranges.
- Use the Users text box to specify the User to search for. Comma-separate multiple items.
- Use the Hosts text box to specify the Host to search for. Comma-separate multiple items.
- Use the Logs text box to specify the Log to search for. Comma-separate multiple items.
- Use the Enabled checkbox to disable criteria.
Simple Syslog Filters
- Use the Visibility drop-down to configure to either include or exclude entries that match this criteria.
- Use the Priority check boxes to include or exclude specific priorities.
- Use the Search Text text box to specify the message search criteria.
- Optionally use the Match Case button to match the case.
- Optionally use the RegEx button to search using regular expressions.
- Optionally use the Match Case
- Use the Sources text box to specify the Source to search for. Comma-separate multiple items.
- Use the Applications text box to specify the Application to search for (RFC5424). Comma-separate multiple items.
- Use the Process IDs text box to specify the Process IDs to search for (RFC5424). Comma-separate multiple items.
- Use the Message IDs text box to specify the Message IDs to search for (RFC5424). Comma-separate multiple items.
- Use the Data text box to specify the Data to search for (RFC5424). Comma-separate multiple items.
- Use the Hosts text box to specify the Host to search for. Comma-separate multiple items.
- Use the Enabled checkbox to disable criteria.
Simple Text Log Filters
- Use the Visibility drop-down to configure to either include or exclude entries that match this criteria.
- Use the Search Text text box to specify the message search criteria.
- Optionally use the Match Case button to match the case.
- Optionally use the RegEx button to search using regular expressions.
- Optionally use the Match Case
- Use the Hosts text box to specify the Host to search for. Comma-separate multiple items.
- Use the Logs text box to specify the Log to search for. Comma-separate multiple items.
- Use the Enabled checkbox to disable criteria.
Sample Simple Event Log Filter
List View
Table View
