Attempts to parses the contents of a Syslog message in accordance to RFC5424 and RFC3164. In the case of RFC5424 formatted messages, structured data is not supported, and will be returned as part of the message.Note: Be mindfull that RFC3164 is informational and a wide range of different implementations are present in the wild.
syslog, logs, logfiles, parse, text, record, reader
In the list below, the names of required properties appear in bold. Any other properties (not in bold) are considered optional. The table also indicates any default values.
| Display Name | API Name | Default Value | Allowable Values | Description |
|---|---|---|---|---|
| Character Set | Character Set | UTF-8 | Specifies which character set of the Syslog messages | |
| Raw message | syslog-5424-reader-raw-message | false |
| If true, the record will have a _raw field containing the raw message |