https://community.splunk.com/t5/Getting-Data-In/How-to-forward-events-to-syslog-nessus-security-center/m-p/230976#M44965 <P>Hello</P> <P>We want to forward all events to Nessus LCE Server (Nessus Security Center).</P> <P>Since we have all Splunk Servers deployed on Windows, we cannot use the Nessus LCE Agent which is only available for some Linux Distros.</P> <P>So we've tried to forward the events using the outputs.conf (tried tcpout and syslog).</P> <P>Unfortunately the LCE Server is not able to normalize these events since they aren't sent in a proper syslog format.</P> <P>One Event is splittet into multiple lines. I'm not sure if it's a splunk or a nessus lce issue.</P> <P>Anybody who has a similar setup with splunk and nessus? Any hints?</P> <P>Thx &amp; Regards<BR />Nicolas</P> Sun, 22 May 2022 19:02:09 GMT nicocin 2022-05-22T19:02:09Z https://community.splunk.com/t5/Getting-Data-In/How-to-forward-events-to-syslog-nessus-security-center/m-p/230976#M44965 <P>Hello</P> <P>We want to forward all events to Nessus LCE Server (Nessus Security Center).</P> <P>Since we have all Splunk Servers deployed on Windows, we cannot use the Nessus LCE Agent which is only available for some Linux Distros.</P> <P>So we've tried to forward the events using the outputs.conf (tried tcpout and syslog).</P> <P>Unfortunately the LCE Server is not able to normalize these events since they aren't sent in a proper syslog format.</P> <P>One Event is splittet into multiple lines. I'm not sure if it's a splunk or a nessus lce issue.</P> <P>Anybody who has a similar setup with splunk and nessus? Any hints?</P> <P>Thx &amp; Regards<BR />Nicolas</P> Sun, 22 May 2022 19:02:09 GMT https://community.splunk.com/t5/Getting-Data-In/How-to-forward-events-to-syslog-nessus-security-center/m-p/230976#M44965 nicocin 2022-05-22T19:02:09Z https://community.splunk.com/t5/Getting-Data-In/How-to-forward-events-to-syslog-nessus-security-center/m-p/230977#M44966 <P>Hi nicocin,<BR /> in <A href="http://docs.splunk.com/Documentation/Splunk/6.5.1/Forwarding/Forwarddatatothird-partysystemsd">http://docs.splunk.com/Documentation/Splunk/6.5.1/Forwarding/Forwarddatatothird-partysystemsd</A><BR /> you can find all the configuration for your need<BR /> About the format problem , you could send not raw data but parsed data <CODE>(sendCookedData=True)</CODE> so you can structure events as you prefer.<BR /> Bye.<BR /> Giuseppe</P> Tue, 17 Jan 2017 13:27:31 GMT https://community.splunk.com/t5/Getting-Data-In/How-to-forward-events-to-syslog-nessus-security-center/m-p/230977#M44966 gcusello 2017-01-17T13:27:31Z https://community.splunk.com/t5/Getting-Data-In/How-to-forward-events-to-syslog-nessus-security-center/m-p/598771#M104428 <P><SPAN>Hi, I realize this is an older question, and I am not sure if this directly answers your question, but perhaps it could be of some help.<BR /><BR />I recently developed a free open-source application called TenaPull, which processes Nessus data for ingestion by Splunk.&nbsp; There is more information here:</SPAN><BR /><A href="https://community.splunk.com/t5/Getting-Data-In/I-developed-an-application-to-process-Nessus-data-for-Splunk/m-p/598592" target="_blank" rel="noopener">https://community.splunk.com/t5/Getting-Data-In/I-developed-an-application-to-process-Nessus-data-fo...</A><BR /><BR /><SPAN>GitHub repo:</SPAN><BR /><A href="https://github.com/billyJoePiano/TenaPull" target="_blank" rel="nofollow noopener noreferrer">https://github.com/billyJoePiano/TenaPull</A></P> Sat, 21 May 2022 19:19:49 GMT https://community.splunk.com/t5/Getting-Data-In/How-to-forward-events-to-syslog-nessus-security-center/m-p/598771#M104428 wanderson7 2022-05-21T19:19:49Z