we are using NXlog to forward syslog messages, which works fine. But we have that strange <14> in the forwarded message:
184.108.40.206 **<14>**2020-10-13 09:58:54,443 message
<Input syslog514udp> Module im_udp Port 514 Host 0.0.0.0 </Input> <Output eventsentry> Module om_udp Host dstserver.domain.com Port 514 Exec $raw_event = $MessageSourceAddress + " " + $raw_event; </Output>
Does anyone know why that happens?