We have a log server which receive about 10 million records per day.
Now I want to extend the log server to have these abilities
- real time monitoring with multi rules
When some fatal error log received or exceptions exceed 100 records every 5 minutes trigger
alert ( like send email )
- Query the log on fly ( dynamically typed by user )
I think the Tx and Roslyn could help. But I want to know whether there is a best practice about these requirement using TX.