Log Receiving

Your $_DSPRODUCTNAME_$ can act as a syslog server in order to receive logs from client device over the network. Three formats are supported for receiving logs: BSD (RFC 3164), IETF (RFC 5424), and Custom. All received logs are stored in the log database.

Before you start:

Go to Log Center > Archive Settings and choose a location to store and archive logs.

To set up standard logs receiving:

  1. Go to Log Center > Log Receiving > Standard.
  2. You can enable BSD and IETF log receiving by ticking the Receive logs from other devices option under the format(s) you need.
  3. Select UDP or TCP from Transfer protocol.
  4. Specify a port number for receiving syslog messages in Port. The default port number is 514.
  5. If you want to securely transfer logs, tick the Enable secure connection (SSL) option. This option is only available when TCP is selected.
  6. Click Apply to save settings.

To set up custom logs receiving:

  1. Go to Log Center > Log Receiving > Custom.
  2. Click Create.
  3. Enter a unique rule name in Name.
  4. Enter a parsing rule in Rule parameters. See the note below for detailed information about creating pattern parsers.
  5. Select UDP or TCP from Transfer protocol.
  6. Specify a port number for receiving syslog messages in Port. The default port number is 514.
  7. If you want to securely transfer logs, tick the Enable secure connection (SSL) option. This option is only available when TCP is selected.
  8. Click OK to save settings.

Note:

Find detailed information about pattern parsers here. You can also download a sample pattern for reference.

To manage custom rules:

  1. Select an existing custom rule.
  2. Choose from the following:

Exporting Certificate

If you ticked the Enable secure connection (SSL) option, you can click the Export certificate button to export the certificate used to authenticate other devices when sending logs to your $_DSPRODUCTNAME_$.