[syslog-ng] Insider 2018-10: 3.18 release; Splunk .conf18; Python destination; Python parser;

Thu Oct 18 09:59:52 UTC 2018

Dear syslog-ng users,

This is the 70th issue of syslog-ng Insider, a monthly newsletter that
brings you syslog-ng-related news.

NEWS

Version 3.18 of syslog-ng released
-------------------------------------

Version 3.18 of syslog-ng has been released with plenty of new
features and bugfixes. Performance of the HTTP destination improved
thanks to batching and multi-threading. The new Python source allows
you to create source drivers for syslog-ng in Python.

Learn about the small, but important changes at
https://www.syslog-ng.com/community/b/blog/posts/small-is-beautiful-what-s-new-in-syslog-ng-3-18
or read the complete list of changes at
https://github.com/balabit/syslog-ng/releases/tag/syslog-ng-3.18.1.

syslog-ng at Splunk .conf18
---------------------------

Balázs Scheidler, original author of syslog-ng, gave a talk at the
annual Splunk conference. His talk about simplifying complex log data
ingestion with syslog-ng is now available on-line. Learn about the new
features coming up in syslog-ng to make it an even better choice to
feed Splunk with log data:

https://conf.splunk.com/files/2018/recordings/simplifying-complex-log-data-its2133.mp4

Python destination
------------------

You can send your log messages to many different destinations using
syslog-ng, but of course not everywhere. This is where the Python
destination of syslog-ng can come handy. You can extend syslog-ng
easily with your own code written in Python and store your log
messages to the destination of your choice.

Learn how to develop your own Python code for syslog-ng from our blog
series, starting with the very basics and showing a complete working
MQTT destination implemented in Python at the end:

https://www.syslog-ng.com/community/b/blog/posts/python-destination-getting-started

https://www.syslog-ng.com/community/b/blog/posts/python-destination-getting-into-details

https://www.syslog-ng.com/community/b/blog/posts/writing-python-destination-in-syslog-ng-how-to-send-log-messages-to-mqtt

Python parser
-------------

The Python parser of syslog-ng not only enables you to parse any type
of log message, but you can also use it to enrich messages. From this
blog you will learn how to extract information from a specially
formatted log message, and how to create new name-value pairs by
consulting external databases about data contained in your log
messages. I will show these using two simple parsers: one resolves
host names from IP addresses, the other one uses regular expressions
to parse synthetic log messages from the loggen utility.

https://www.syslog-ng.com/community/b/blog/posts/parsing-log-messages-with-the-syslog-ng-python-parser

WEBINARS

You can watch our past webinars:

* Supercharge your syslog-ng parsing:
https://www.brighttalk.com/webcast/16207/330198

* High performance log streaming to HDFS with syslog-ng:
https://www.brighttalk.com/webcast/16207/335943

Your feedback and news, or tips about the next issue are welcome. To
read this newsletter online, visit: https://syslog-ng.com/blog/

Peter Czanik (CzP) <peter.czanik at balabit.com>
Balabit (a OneIdentity company) / syslog-ng upstream
https://syslog-ng.com/community/
https://twitter.com/PCzanik