Syslog

Syslog SOURCE PLUGIN

Syslog is a standard protocol used for message logging and management in Unix and Unix-like systems. It is widely used for system monitoring, debugging, and troubleshooting.
The Syslog Source plugin can collect messages through a Unix socket server using UDP or TCP, or over the network using TCP or UDP. It provides a flexible and customizable way to configure your calyptia pipeline to receive, parse, and process Syslog messages.
Configuration Parameters
The following are configuration Parameters for Syslog Source Plugin.
Key
Description
Port
The TCP Port the pipeline should listen on.
Parser
Specify an alternative parser for the message. If Mode is set to tcp or udp then the default parser is syslog-rfc5424 otherwise syslog-rfc3164-local is used. If your syslog messages have fractional seconds set this Parser value to syslog-rfc5424 instead. If you have a custom parser please use Advanced Settings to designate the parser
Mode
Specify UDP or TCP
The following are Advanced configuration Parameters for Syslog Source Plugin.
Key
Description
Buffer Max Size
Specify the maximum buffer size in KB to receive a JSON message.
Buffer Chunk Size
This sets the chunk size for incoming incoming JSON messages. These chunks are then stored/managed in the space available by buffer_max_size.
​
​
The following are Security and TLS configuration Parameters for Syslog Source Plugin.
Key
Description
TLS
Enable or Disable TLS/SSL support
TLS Certificate Validation
Turn TLS/SSL certificate validation on / off, TLS must be on for this setting to be enabled.
TLS Debug Level
Set TLS debug verbosity level. It accepts the following values: 0 (No debug), 1 (Error), 2 (State change), 3 (Informational), and 4 Verbose
CA Certificate File Path
Absolute path to CA certificate file
Certificate File Path
Absolute path to Certificate file
Private key File Path
Absolute path to private Key file
Private Key Path Password
Optional password for tls.key_file file
TLS SNI Hostname Extension
Hostname to be used for TLS SNI Extension

Key	Description
Port	The TCP Port the pipeline should listen on.
Parser	Specify an alternative parser for the message. If Mode is set to tcp or udp then the default parser is syslog-rfc5424 otherwise syslog-rfc3164-local is used. If your syslog messages have fractional seconds set this Parser value to syslog-rfc5424 instead. If you have a custom parser please use Advanced Settings to designate the parser
Mode	Specify UDP or TCP

Key	Description
Buffer Max Size	Specify the maximum buffer size in KB to receive a JSON message.
Buffer Chunk Size	This sets the chunk size for incoming incoming JSON messages. These chunks are then stored/managed in the space available by buffer_max_size.

Key	Description
TLS	Enable or Disable TLS/SSL support
TLS Certificate Validation	Turn TLS/SSL certificate validation on / off, TLS must be on for this setting to be enabled.
TLS Debug Level	Set TLS debug verbosity level. It accepts the following values: 0 (No debug), 1 (Error), 2 (State change), 3 (Informational), and 4 Verbose
CA Certificate File Path	Absolute path to CA certificate file
Certificate File Path	Absolute path to Certificate file
Private key File Path	Absolute path to private Key file
Private Key Path Password	Optional password for tls.key_file file
TLS SNI Hostname Extension	Hostname to be used for TLS SNI Extension

HTTP API Collector

TCP

Last modified 2mo ago