Table of Contents
- Introduction
- Deployment
- Configuration
- 23. Configuration overview
- 24. NXLog language
- 25. Reading and receiving logs
- 26. Processing logs
- 26.1. Parsing various log formats
- 26.2. Alerting
- 26.3. Using buffers
- 26.4. Character set conversion
- 26.5. Detecting an inactive agent or log source
- 26.6. Event correlation
- 26.7. Extracting data
- 26.8. Filtering logs
- 26.9. Format conversion
- 26.10. Log rotation and retention
- 26.11. Log classification
- 26.12. Parsing multi-line logs
- 26.13. Rate limiting and traffic shaping of logs
- 26.14. Rewriting and modifying logs
- 26.15. Timestamps
- 27. Forwarding and Storing Logs
- 28. Centralized Log Collection
- 29. NXLog failover mode
- 30. High Availability (HA)
- 31. Encrypted transfer
- 32. Reducing bandwidth and data size
- 33. Reliable message delivery
- 34. Compression and Encryption
- OS Support
- Integration
- Troubleshooting
- Enterprise Edition Reference Manual
- NXLog Manager
- NXLog Add-Ons
26.9. Format conversion
The requirements and possibilities for log format conversion are endless. NXLog provides a broad range of functionality for conversion, including the NXLog language and dedicated modules. For special cases, a processor or extension module can be crafted.
For converting logs between CSV formats, see Complex CSV format conversion.
Example 108. Converting from BSD to IETF Syslog
This configuration receives log messages in the BSD Syslog format over UDP and forwards the logs in the IETF Syslog format over TCP.
nxlog.conf ![[Download file]](images/icons/download_icon.png "Download file")
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
<Extension _syslog>
Module xm_syslog
</Extension>
<Input bsd>
Module im_udp
Port 514
Host 0.0.0.0
Exec parse_syslog_bsd(); to_syslog_ietf();
</Input>
<Output ietf>
Module om_tcp
Host 1.2.3.4
Port 1514
</Output>
<Route bsd_to_ietf>
Path bsd => ietf
</Route>