Table of Contents
- Introduction
- Deployment
- Configuration
- 23. Configuration overview
- 24. NXLog Language
- 25. Reading and Receiving Logs
- 26. Processing Logs
- 26.1. Parsing Various Formats
- 26.2. Alerting
- 26.3. Using Buffers
- 26.4. Character Set Conversion
- 26.5. Detecting a Dead Agent or Log Source
- 26.6. Event Correlation
- 26.7. Extracting data
- 26.8. Filtering Messages
- 26.9. Format Conversion
- 26.10. Log Rotation and Retention
- 26.11. Message Classification
- 26.12. Parsing Multi-Line Messages
- 26.13. Rate Limiting and Traffic Shaping
- 26.14. Rewriting and Modifying Messages
- 26.15. Timestamps
- 27. Forwarding and Storing Logs
- 28. Centralized Log Collection
- 29. NXLog Failover Mode
- 30. High Availability
- 31. Encrypted Transfer
- 32. Reducing Bandwidth and Data Size
- 33. Reliable Message Delivery
- 34. Compression and Encryption
- OS Support
- Integration
- Troubleshooting
- Enterprise Edition Reference Manual
- NXLog Manager
- NXLog Add-Ons
26.9. Format Conversion
The requirements and possibilities for format conversion are endless. NXLog provides a broad range of functionality for conversion, including the NXLog language and dedicated modules. For special cases, a processor or extension module can be crafted.
For converting between CSV formats, see Complex CSV Format Conversion.
Example 106. Converting from BSD to IETF Syslog
This configuration receives log messages in the BSD Syslog format over UDP and forwards the logs in the IETF Syslog format over TCP.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
<Extension _syslog>
Module xm_syslog
</Extension>
<Input bsd>
Module im_udp
Port 514
Host 0.0.0.0
Exec parse_syslog_bsd(); to_syslog_ietf();
</Input>
<Output ietf>
Module om_tcp
Host 1.2.3.4
Port 1514
</Output>
<Route bsd_to_ietf>
Path bsd => ietf
</Route>