Syslog Priority Field Decoder / Lookup

Splunk Community
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Syslog Priority Field Decoder / Lookup

Syslog Priority Field Decoder / Lookup
Archived
If you are accepting syslog directly into Splunk, and have no_priority_stripping = true to get the priority, this app will extract it into the syslog_priority field. It will then use the included lookup file to create two new fields, syslog_facility and syslog_severity for you. It currently runs automatically only on data with a source of udp:514. Edit as necessary.
Ask a Question View in Splunkbase
0 topics and 0 replies mentioned Syslog Priority Field Decoder / Lookup in
Latest Topics
No posts to display.
Latest Replies
No posts to display.
Top Topics
No posts to display.
My Topics
No posts to display.