Forum Discussion

8 years ago

Syslog Timestamps and RFC's

Syslog issues:

1. Being bound to only the two RFC for syslog is near sighted: syslog / timestamp / formatting should be more flexible.

2. the biggest concern I have is that Syslog should reflect the time stamp of the COLLECTOR'S NIC at the time the syslog packet ARRIVES at the collector....not the syslog / timestamp of the system sending the message : this is especially important with systems where clock settings or NTP are currently failing......alerting is based on the time stamp : if the time stamp says Jan 1st 2001 12:01am becasue the CMOS battery on the unit failed......than we NEVER see those syslog messages due to alerting range.

syslog

Forum Discussion

Syslog Timestamps and RFC's

Related Content

sending Windows syslogs to Logicmonitor

New user - looking for information on parsing fields from Syslog message field

Query Database Based on Previous Timestamp

Parse syslog facility and priority

Syslog for Authentication

Recent Discussions

Dashboard Sharing – An Inline Framing Method

2021-12-15 US Office Hours

Live Training - Tuning Datapoints and Alerts - 15th JUNE 2022 - APAC

Live Training - Introduction to Dashboards - 18th MAY 2022 - APAC

2022-05-11- APAC Product Overview -Collectors, Resources/Groups, Dashboards