cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

215
Views
0
Helpful
1
Replies
Highlighted
Participant

which syslog too is best to manipulate syslog messages

Hello,

 

Nowadays there're number of syslog tools to manipulate and alert on syslog messages. My company's syslog server receives syslogs on custom port (not 514) and not all Cisco devices are able to change syslog port.

 

So, I need to forward logs to some proxy like server (like fluentd, syslogng, rsyslog) which is able to listen to 514 port, and to forward the logs furhther to my Companys syslog receiver. So, i need something who could receive the syslog on 514 port and forward it to any other port. Maybe you know do any of my mentioned tools are able to forward the syslog almost untouched, that means is should leave the original SOURCE IP ADDRESS of the packet. 

 

Any recommendations ? Thanks.

 

1 REPLY 1
Highlighted

Re: which syslog too is best to manipulate syslog messages

Not sure if you are looking for a free version but KiwiSyslog has always been a pretty solid tool that allows for significant manipulation, filtering, processing, and archiving of log information. A quick search shows that it also supports forwarding options. 

CreatePlease to create content
Content for Community-Ad