Selection of Specific Log Sources
Narrow the scope of the search to a group of log sources.
To perform a more targeted search, you can narrow the search scope to a group of log sources, such as all firewall interfaces, all routers, all General Syslog, Microsoft sources, other UNIX, or LogLogic appliances.
The default rule is set as All Sources except LogLogic. This includes all logs except LogLogic appliance logs. You can add any individual and/or group of non-LogLogic sources to this rule. However, if you specify any other log source, other than LogLogic source, the default rule is removed from the filter list (from the left pane) and the new log source is added. This enhancement applies to only system-defined groups and not the user-defined groups. For example, if you select a user-defined group that only includes LogLogic source, then the default rule is removed.
On the Management Station, you can select from one managed appliance or all appliances, or particular groups of appliances (for example, all LogLogic LX Appliances or all LogLogic ST Appliances) on which to run the search. The Choose Device page automatically populates the log sources included on all defined groups.