Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1456
Views
0
Helpful
1
Replies

which syslog too is best to manipulate syslog messages

from88
Level 4
Level 4

‎04-08-2020 05:25 AM - edited ‎04-08-2020 05:26 AM

Hello,

 

Nowadays there're number of syslog tools to manipulate and alert on syslog messages. My company's syslog server receives syslogs on custom port (not 514) and not all Cisco devices are able to change syslog port.

 

So, I need to forward logs to some proxy like server (like fluentd, syslogng, rsyslog) which is able to listen to 514 port, and to forward the logs furhther to my Companys syslog receiver. So, i need something who could receive the syslog on 514 port and forward it to any other port. Maybe you know do any of my mentioned tools are able to forward the syslog almost untouched, that means is should leave the original SOURCE IP ADDRESS of the packet. 

 

Any recommendations ? Thanks.

 

Labels:
0 Helpful
1 Reply 1

stephan.l.martin1
Level 1
Level 1

‎04-20-2020 01:51 PM

Not sure if you are looking for a free version but KiwiSyslog has always been a pretty solid tool that allows for significant manipulation, filtering, processing, and archiving of log information. A quick search shows that it also supports forwarding options. 

0 Helpful
Customers Also Viewed These Support Documents