BAO Zipkit - Syslog Monitor Adapter for AO 7.7

Version 3


    Syslog Monitor Adapter for AO 7.7


    This adapter will allow you to receive Syslog Events via either TCP or UDP (configurable in the Adapter config) from remote systems.


    Current Version:



    Uploading the Adapter:


    Upload the adapter to your Grid via the "Manage  Adapters - Upload Adapter - Pre-packaged adapter (aroar file)"


    Configuring the Adapter:

    Configure Adapter as follows:



        <port>514</port>     (any open port you wish, 514 is the default)

        <proto>udp</port>   (udp or tcp)



    Forwarding events to your Adapter:


    On any Unix or Linux box, you can forward that system's Syslog entries by editing /etc/syslog.conf or /etc/rsyslog.conf


    Example for /etc/syslog.conf


    Your syslog may contain this:

    *.info;mail.none;authpriv.none;cron.none                /var/log/messages


    To also forward these events to your CDP with Syslog adapter (udp port 514) add the following line:


    *.info;mail.none;authpriv.none;cron.none               @


    ( should be replaced with the IP address of your CDP and/or AP)


    Make sure you restart syslog once you're done updating your syslog.conf. (/etc/init.d/syslog restart)


    Processing your captured Syslog events with a workflow:


    The captured events will be available to your workflow as an inputevent with the following XML Structure:







           <date>Thu Jun 18 10:19:17 CDT 2015</date>




           <message>root: This is a forwarded syslog test event - over and out </message>





    Important Note:


    This software is "AS-IS" and comes with NO WARRANTIES expressed or implied. It has been offered in good faith and any consequential damage due to its use is the sole responsibility of the user. It is also not supported by BMC Software and support by me will only be provided on a best-effort basis.


    With that said, I hope you guys find it useful and any feedback, positive or negative, is welcomed.