Syslog - Generic Linux OS
Device Details
Device Name | Syslog - Generic Linux OS |
Vendor | Linux |
Device Type | Linux OS |
Supported Model Name/Number | N/A |
Supported Software Version | N/A |
Collection Method | Syslog |
Configurable Log Output | N/A |
Log Source Type | Syslog - Generic Linux OS |
Log Processing Policy | LogRhythm Default V 2.0 |
Exceptions | N/A |
Additional Information | https://www.rsyslog.com/doc/v8-stable/configuration/templates.html https://rsyslog-5-8-6-doc.neocities.org/rsyslog_conf_templates |
Support for Linux Application Logs
This new Linux LST does not support Linux application logs. Linux application logs are supported separately with respective log source types. If you are streaming Linux application logs through Syslog - Generic Linux OS, we recommend using log source virtualization to stream application logs
For more information, see Log Source Virtualization.
Supported Log Messages
(List of LR tags used to parse the log information for each message type)
Type | Product Version | Supported Schema Fields |
|---|---|---|
Account Modified | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <account>, <tag2>, <group> |
Account Password Changed | N/A | <severity>, <dip>, <dname>, <process>, <processid>, <subject>, <account> |
Agetty Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Anacron Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <object>, <tag2> |
Apache Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Apparmor Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Apport Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Audispd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Auditd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Augenrules Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Bind_exporter Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Catch All : Level 1 | N/A | <severity>, <tag1> |
CHFN Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Chronyd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <sip>, <sname>, <amount> |
Cpanelapi Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Cpanel_exporter Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
CRMD Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
CRON Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Crond Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <login>, <object> |
Crontab Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Dbus Broker Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Dbus Daemon Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
DHCPD Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
DNF Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Dracut Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Drupal Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Eig_performance Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Freshclam Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
FSCK Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Gpasswd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <account>, <tag2>, <login>, <group> |
Grafana-agent Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Group Created | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <group> |
Group Deleted | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <group> |
Group Modified | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <group>, <tag2> |
Hibernate Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Hostname Changed | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <objectname> |
Iptables Exporter Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Journal Daemon Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2> |
Journal Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Kdump Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Keepalived_vrrp Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Kernel Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Lldpd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Login Daemon Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Login Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <login> |
LVM Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Milter-vuxheader Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
ModemManager Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Modules Daemon Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
MOTD Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Multipathd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Named Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Network Daemon Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <dinterface>, <status>, <tag2>, <sip> |
Network Daemon Messages - Wait Online | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Networkd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
NetworkManager Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <dinterface> |
Nginx Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Node_exporter Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Nxlog Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Orchestrator Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Osqueryd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
PAM Helper Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <login> |
Pam_rbld Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Perl Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Polkitd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Puppet-agent Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Pure-ftpd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Rc.local Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Resolve Daemon Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Rsyslogd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Run-parts Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <object>, <tag2> |
Sendmail Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
SETroubleshoot Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Slapd-access Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
Snapd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Snmpd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Spamd Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Squid Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
SSHD Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <login>, <sip>, <sport>, <object> |
SSSD Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <subject> |
SU Messages | N/A | <severity>, <dip>, <dname>, <process>, <subject>, <account>, <login> |
Sudo Messages | N/A | <severity>, <dip>, <dname>, <process>, <subject>, <tag1>, <account>, <login>, <command> |
System Daemon General Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Udev Admin Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Udev Daemon Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Udisk Daemon Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
User Account Created | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <account>, <group> |
User Account Deleted | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject>, <tag2>, <account>, <group> |
Userhelper Messages | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Zabbix Message | N/A | <severity>, <tag1>, <dip>, <dname>, <process>, <processid>, <subject> |
Proftpd Messages | N/A | <severity>, <tag1>, <dname>, <process>, <processid>, <subject>, <tag2>, <login>, <object>, <sip>, <dip> |
Revision History
KB Version | Log Type | Change Type | Details |
|---|---|---|---|
KB 7.1.672.0 | Syslog - Generic Linux OS | New Device Documentation | N/A |