Syslog
Integration with Syslog Server for monitoring Haltdos appliances
Syslog stands for System Logging Protocol and is a standard protocol used to send system log or event messages to a specific server, called a Syslog server. It is primarily used to collect various device logs from several different machines in a central location for monitoring and review.
Haltdos supports integration with 3rd party Syslog service for sending real-time alerts. All logs in Haltdos are written in CEF format. The body of the log entry itself is JSON format. This allows simple integration with monitoring tools such as SIEM solutions without the need for writing custom parsers.
It is recommended to configure Syslog (if available) for centralized monitoring of all Haltdos appliances
How to Use:
- Go to Stack > Settings > Integration> Syslog.
- Configure your settings
- Click Save
| PARAMETERS | ACCEPTED VALUES | DEFAULT |
|---|---|---|
| Syslog Export Enabled | Boolean | False |
| Protocol | Dropdown | UDP |
| Host Name | String | Blank |
| Syslog Server Port | String | Blank |
Description:
Syslog Export Enabled
This option allows users to enable or disable exporting Syslog to an external server.
Protocol
This option allows the user to select the protocol type on which the Syslog server is running. Users can select either TCP or UDP.
Host Name
This option helps the user to mention the IP address or the hostname of the external backup server on which the Syslog service is exporting the log details.
Syslog Server Port
This option allows the users to mention the port number to communicate with Syslog server.