MENU
    Syslog
    • 05 Oct 2024
    • 1 Minute to read
    • Dark

    Syslog

    • Dark

    Article summary

    Syslog (TCP)

    Output events and detections to a syslog target.

    • dest_host: the IP or DNS and port to connect to, format www.myorg.com:514.

    • is_tls: if true will output over TCP/TLS.

    • is_strict_tls: if true will enforce validation of TLS certs.

    • is_no_header: if true will not emit a Syslog header before every message. This effectively turns it into a TCP output.

    • structured_data: arbitrary field to include in syslog "Structured Data" headers. Sometimes useful for cloud SIEMs integration.

    Example:

    dest_host: storage.corp.com
    is_tls: "true"
    is_strict_tls: "true"
    is_no_header: "false"
    YAML


    Was this article helpful?


    What's Next