rsyslog

High-performance log ingestion and ETL engine

rsyslog

High-performance log ingestion and ETL engine

7.0

RSyslog Windows Agent 7.0 Released

friedlRelease Announcement, , , , , , No Comments on RSyslog Windows Agent 7.0 Released

Release Date: 2021-03-09

Build-IDs: Service 7.0.0.213, Client 7.0.0.297

Features

  • Filter Engine: Add support to filter by IPv6 addresses.
  • Eventlog Monitor V2: Added support to for LogPoint SIEM JSON Format.
  • Eventlog Monitor V2: Added support for the following EventLog properties (if available):
    Providerguid, processed, threaded, version, opcode, eventtype, nxseverityvalue (required for Severity Mapping in LogPoint SIEM JSON Format)
  • Action Caching: Added support for caching / queuing in RELP Action when Action processing fails.
  • Filter Engine: Added support to store filter results when using the global Status Variable type filters.
  • Queue Engine: Added Warning/Error events which are generated when the queue gets full.
  • Librelp: Updated librelp to v1.8.0.
  • Openssl: Updated to version 1.1.1g.

Bugfixes

  • Filter Engine: Fixed SaveIntoProperty handling when using the Status Type Filter.
  • Queue Engine: Fixed an issue that caused an internal exception
    STATUS_STACK_BUFFER_OVERRUN when two TCP Syslog Sessions where closed at the same time.

You can download Free Trial Version of RSyslog Windows Agent.

RSyslog Windows Agent 7.0 Released

friedlNews, news-rwa, ,

We are proud to announce the 7.0 release of Rsyslog Windows Agent.

On the output side we have added dedicated action queues to all potentially blocking actions. This provides higher performance as well as buffering capabilities in case the action is unreachable or blocks for some other reason. We also added native support for LogPoint SIEM JSON format. This makes it even easier to integrate into such environments.

Very importantly, we now fully support the latest Windows Server and Windows 10 builds 20H2.

Filtering capabilities have been enhanced, for example in regard to IPv6 and status information. Also new properties have been added and support libraries upgraded for even more feature-richness and to use the latest security features. For example, TLS 1.3 is now supported.

Detailed information can be found in the version history.
Version 7.0 is a free download. Customers with existing 6.x keys can contact our Sales department for upgrade prices. If you have a valid Upgrade Insurance ID, you can request a free new key by sending your Upgrade Insurance ID to sales@adiscon.com. Please note that the download enables the free 30-day trial version if used without a key – so you can right now go ahead and evaluate it.
Scroll to top