By default, except if the DISCARD parameter is set to TRUE, the Syslog Adapter does the following:

• Converts the syslog messages it receives into new Service Assurance notifications or updates the existing Service Assurance notifications.

• Forwards them on to the Global Manager.

  Syslog batching refers to a process where the Adapter Platform Server waits for a specified period of time before forwarding re-notifications (updated notifications) to the Global Manager.

  In case of high frequency of syslog messages, you can use batching to improve performance of clients processing the converted Service Assurance notifications. You configure batching by editing the my_hook_syslog.asl file so that re-notification messages are held for a specified period of time. Then, once that time is exceeded, only the most recent message of those bearing the same notification name is sent to the Global Manager.

  To set the batch parameter, use sm_edit to open my_hook_syslog.asl, and type the period of time (in seconds) you want the Syslog Adapter to wait before forwarding re-notifications to the Global Manager. By default, the batch setting is 10 seconds. To disable batching, specify zero (0):

  BATCH_NOTIFY_INTERVAL = 10
  

  Using the Syslog Aggregate parameters on page 88 provides an example of a script that contains the batch parameter.