Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Template for syslog

    Scheduled Pinned Locked Moved General pfSense Questions
    1 Posts 1 Posters 465 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      fratou
      last edited by

      hello,

      I've been using Pfsense for a while now, and currently I'm trying to create a template for syslog format for snort alerts that I'll send to a server. Here's my template:

      $template GRAYLOGRFC5424,"<%PRI%>%PROTOCOL-VERSION% %TIMESTAMP:::date-rfc3339% %HOSTNAME% %APP-NAME% %PROCID% %MSGID% %STRUCTURED-DATA% %msg%\n"

      local5.alert @XXXX.XXXX.XXXX.XXXX:514;GRAYLOGRFC5424

      I'd like to know if there's a mistake because when I put the template it does not send any log…

      Thank you and have a good day!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.