[rsyslog-notify] Forum Thread: Re: [PARSING] Rsyslog parsing for SIEM - (Mode 'reply')

noreply at adiscon.com noreply at adiscon.com
Wed Feb 17 16:51:03 CET 2016

Previous message: [rsyslog-notify] Forum Thread: Re: [PARSING] Rsyslog parsing for SIEM - (Mode 'reply')
Next message: [rsyslog-notify] Forum Thread: Re: [PARSING] Rsyslog parsing for SIEM - (Mode 'reply')
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

User: ltex 
Forumlink: http://kb.monitorware.com/viewtopic.php?p=26346#p26346

Message: 
----------
Thanks,

Are you sure that rsyslog is forwarding WHOLE data and every string in
their syslog to SIEM? In SIEM we are seeing only the data AFTER the
timestamp and IP, like it was cutted.

Previous message: [rsyslog-notify] Forum Thread: Re: [PARSING] Rsyslog parsing for SIEM - (Mode 'reply')
Next message: [rsyslog-notify] Forum Thread: Re: [PARSING] Rsyslog parsing for SIEM - (Mode 'reply')
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the rsyslog-notify mailing list