Mailing List Archive: append CEF:0 To Message

Create and reference your own custom output template.

Regards,

> On Jun 14, 2022, at 14:02, Abdulaziz Loonat via rsyslog <rsyslog@lists.adiscon.com> wrote:
>
> I have a text file that I read in, but I need to add the CEF:0 to the
> syslog message before forwarding into Azure Sentinel
>
> Whats best method to achieve this
> _______________________________________________
> rsyslog mailing list
> https://lists.adiscon.net/mailman/listinfo/rsyslog
> http://www.rsyslog.com/professional-services/
> What's up with rsyslog? Follow https://twitter.com/rgerhards
> NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.

_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.