Releases: criblpacks/cribl-syslog-input
Releases · criblpacks/cribl-syslog-input
Version 1.3.0
New in 1.3.0:
- Re-grouped timezone detection from Message field for easier on/off management
- Auto detection of ISO 8601 time stamps, to avoid unnecessary timezone calculations
- Handling of timestamps from within the message field now support timezone lookups.
- Updates in comments to replace "LogStream" with "Stream"
- Verified support for Cribl Stream 4.0
Version 1.2.1
Version 1.2.1 - 2022-07-12
Changed catch-all route (used when Source is not syslog) to use passthru pipeline and default destination.
Version 1.2.0 - 2022-07-11
Resolved an issue where facility or severity were preserved unintentionally when the value is 0
Added an option to perform lookup using Eval function instead of Lookup function
Minor improvements to the order of processing for missing meta fields
Improved comments to indicate which settings are disabled by default
Version 1.2.1
Version 1.2.1 - 2022-07-12
Updated minimum required version of Cribl to 3.4.0
Updated minimum required version of Cribl to 3.4.0
Added meta information for pack.cribl.io filtering
v1.1.3 Added meta information for packs.cribl.io filtering
Minor update to packages.json
Contributors
dmaislin-cribl
Assets 3
Update to syslog csv lookup
Contributors
dmaislin-cribl
Assets 3
v1.1.0 of the syslog preprocessing pack
Updated files to 1.1
Release v0.5.1
Updated the README.md file for clarity.
v0.5.0 Release
This Pack enables a variety of functions when LogStream is used to receive data from Syslog senders.
- Provides a pipeline for use as an Input Pre-Conditioning pipeline
- Volume reduction by removing redundant information, such as the human-readable timestamp.
- Timezone normalization, when senders do not include timezone information
- Lookup-based enrichment to set additional meta-information for a given sender. Examples include index, sourcetype, and time zone.