[mrtg] Re: monitor processes (not services) on Win2k and/or WinNT

James Amann jamann at gsu.edu
Wed Jan 2 18:59:05 MET 2002 

Garth,

Thanks for the reply,

I am enclosing the cfg file below.  These are the steps I have taken so far in testing:

I have set up procmon as described in the cfg file, but I only seem to get a trap generated if I restart the procmon service. Starting and stopping the process being monitored (cmd and blackice) does not generate a trap.   If I restart the service, I get traps only for the condition "false" meaning I get a trap if the process is running when the procmon service is restarted. I have tried this on Winnt and Win2k with the same results. I am starting and stopping these processes manually, so they are not hanging.  

I have followed the installation directions in the CFG file faithfully. 

Thanks for any help.

########  Configurable options:
Version:1
Destination: [IP of trap server]
Port:162 
Community: [Comm String]

Process:cmd
Running:true

Process:blackice
Running:true

###End



James McGovern Amann
Network Technician Lead
Georgia State University
IST / UCCS
95 Decatur St.
Suite 500
Atlanta, GA 30303
PH: 404.651.1574
FX: 404.651.4669
PG: 404.476.7754
jamann at gsu.edu

>>> "Williams, Garth" <gkwilliams at epcor.ca> 01/02/02 12:22PM >>>

First of all, howdy to my list buddies! There IS life after AOL!!

Anyway, I have sucessfully used PROCMON (in my previous job), so I can
attest that it DOES indeed work.  In fact, all the NCOMTECH software I have
used works as advertised.

I never had an issue with a failed (i.e. HUNG) process, so cannot comment on
that, but can say that it WILL generate traps if the process stops (and
removes itself from memory before stopping).  Same goes for the opposite
(i.e. a process is started that should not be).

I would be glad to look at your config file if you want to send it to me.


Garth K. Williams
Network Consultant - Acrodex
email: garth.williams at acrodex.com 
          gkwilliams at epcor.ca 


> -----Original Message-----
> From:	James Amann [SMTP:jamann at gsu.edu] 
> Sent:	Wednesday, January 02, 2002 9:26 AM
> To:	mrtg at list.ee.ethz.ch 
> Cc:	WhatsUp_Forum at list.ipswitch.com 
> Subject:	[mrtg] monitor processes (not services) on Win2k and/or
> WinNT
> 
> 
> I am trying to monitor processes (not services) on Win2k and/or WinNT.  I
> need to generate a notification, (prefferably a trap) when and if a
> process fails or is started.  
> 
> I have tried using procmon (http://www.ncomtech.com/download.htm)
> but it simply does not work.
> 
> If anyone has tamed this beast please let me know.  Thanks.
> 
> James Amann
> 404-651-1574
> jamann at gsu.edu 
> 
> 
> 
> 
> 
> --
> Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe 
> Archive     http://www.ee.ethz.ch/~slist/mrtg 
> FAQ         http://faq.mrtg.org    Homepage     http://www.mrtg.org 
> WebAdmin    http://www.ee.ethz.ch/~slist/lsg2.cgi 

--
Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe 
Archive     http://www.ee.ethz.ch/~slist/mrtg 
FAQ         http://faq.mrtg.org    Homepage     http://www.mrtg.org 
WebAdmin    http://www.ee.ethz.ch/~slist/lsg2.cgi 



--
Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe
Archive     http://www.ee.ethz.ch/~slist/mrtg
FAQ         http://faq.mrtg.org    Homepage     http://www.mrtg.org
WebAdmin    http://www.ee.ethz.ch/~slist/lsg2.cgi

More information about the mrtg mailing list