We are proud to announce the first minor release in the new major version of NXLog Enterprise Edition.
The release fixes a number of bugs and issues and we are expanding the capabilities of our new passive network monitoring module with additional protocol parsers focusing on Industrial Control Systems.
This release also brings the initial version of our new module
im_maculs - a native collection method for Apple's Unified Logging System.
- Added protocol parser for S7
- Added protocol parser for IEC104
- Added native macOS Unified Logging module
If you have feedback, would like to see additional improvements, reach out to us.
Download a fully funcional trial version of NXLog Enterprise Edition 5.2 here.
* 2020-12-17 5.2.6388  Implemented im_maculs for collecting macos Unified Logging System  Implemented librdkafka performance data collection to im_kafka and om_kafka  Added common http layer to NXLog  Restored SNI directive to om_http  Fixed bad sockaddr error in im_linuxaudit  Added missing hostname to im_linuxaudit records  Fixed an error in im_http causing it to send invalid Content-Length [MR2454] Fixed an error in im_azure's chunked encoding parser  Fixed a memory leak in local queue de/serialization reported by Valgrind  Fixed an error causing kerberos authentication issues in im_wseventing  Fixed a bug manifesting as SSL handshake errors in im_azure  Fixed a request format error in om_elasticsearch  Fixed infinite read loop in im_msvistalog when reading etl files  Added charset to content-type header in om_raijin  Removed accidentally packaged perl528.dll from Windows packages, restoring xm_perl functionality  Fixed a segfault in the BACNET decoder  Implemented S7 protocol support in im_pcap  Fixed multiple crash bug in im_pcap  Unify ownership and permission handling in pipe, file and uds outputs  Fixed a segfault in im_linuxaudit triggered by loading the module with no rules  Fixed a memory leak in om_batchcompress  Fixed an im_raijin deserialization error  Optimized pool handling in NXLog core  Implemented IEC104 dissector in im_pcap  Implemented LLDP dissector for PROFINET protocol in im_pcap  Added deprecation warning for FlushLimit and FlushInterval directives  Fixed an issue in om_raijin causing it to stop after 1 request  Increased thread stack size on AIX  Fixed an SSL related crash in im_batchcompress  Implemented functions for logging librdkafka performance statistics  Implemented additional parsing for PROFINET RTC-PDU  Fixed a unicode escaping issue in common JSON handling code  Fixed segmentation fault in uuid.c  Fixed an error causing reload over xm_admin to fail if im_wseventing is in use  Cleaned unnecessary RPATH from Linux generic packages  Fixed various Valgrind error reports  Raw event format refactored in im_msvistalog  Implemented additional parsing for PROFINET RTA-PDU and UDP-RTA-PDU  Raw event format refactored in im_odbc  Raw event format refactored in im_etw  Raw event format refactored in im_winperfcount  Raw event format refactored in im_mseventlog  Raw event format refactored in im_regmon  Raw event format refactored in im_kafka  Raw event format refactored in im_acct  Added missing content-length header to xm_admin http responses  Fixed incorrect use of SSL_shutdown()  Fixed stalling connections in im_ssl  Fixed a performance issue in im_regmon  Refactor to use common HTTP layer  implemented PROFINET SCADA protocol in im_pcap  Fixed an error causing im_odbc to lose position after restart  Fixed BOOL output for change-of-state events in the BACNET parser  Parts of xm_asl were refactored  Implemented additional data link types in im_pcap