From 83ae5fd3bbbf39d829dccf54143075c1e7bd5527 Mon Sep 17 00:00:00 2001 From: Taylor Swanson Date: Fri, 25 Aug 2023 09:02:56 -0500 Subject: [PATCH 1/2] Mark syslog processor as GA and improve documentation - Removed the experimental tag for the syslog processor - Improve documentation of the syslog processor to note that it does not directly handle receiving external messages. --- CHANGELOG.next.asciidoc | 1 + libbeat/processors/syslog/docs/syslog.asciidoc | 7 ++++++- 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.next.asciidoc b/CHANGELOG.next.asciidoc index 01ee4bac3b8..1311b2750e1 100644 --- a/CHANGELOG.next.asciidoc +++ b/CHANGELOG.next.asciidoc @@ -149,6 +149,7 @@ https://github.com/elastic/beats/compare/v8.8.1\...main[Check the HEAD diff] - Add warning message to SysV init scripts for RPM-based systems that lack `/etc/rc.d/init.d/functions`. {issue}35708[35708] {pull}36188[36188] - Mark `translate_sid` processor is GA. {issue}36279[36279] {pull}36280[36280] - dns processor: Add support for forward lookups (`A`, `AAAA`, and `TXT`). {issue}11416[11416] {pull}36394[36394] +- Mark `syslog` processor as GA, improve docs about how processor handles syslog messages. {issue}36416[36416] {pull}1[1] *Auditbeat* diff --git a/libbeat/processors/syslog/docs/syslog.asciidoc b/libbeat/processors/syslog/docs/syslog.asciidoc index 0cabf4f07f9..bf8af6a9283 100644 --- a/libbeat/processors/syslog/docs/syslog.asciidoc +++ b/libbeat/processors/syslog/docs/syslog.asciidoc @@ -5,7 +5,12 @@ syslog ++++ -experimental[] +The syslog processor parses RFC 3146 and/or RFC 5424 formatted syslog messages +that are stored in a field. The processor itself does not handle receiving syslog +messages from external sources. This is done through an input, such as the TCP +input. Certain integrations, when enabled through configuration, will embed the +syslog processor to process syslog messages, such as Custom TCP Logs and +Custom UDP Logs. [float] ==== Configuration From 176f3490d8bdf8d9dc27b11ce4c4d2a518fbc7c9 Mon Sep 17 00:00:00 2001 From: Taylor Swanson Date: Fri, 25 Aug 2023 09:25:29 -0500 Subject: [PATCH 2/2] Changelog PR --- CHANGELOG.next.asciidoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CHANGELOG.next.asciidoc b/CHANGELOG.next.asciidoc index 1311b2750e1..2f05fce3512 100644 --- a/CHANGELOG.next.asciidoc +++ b/CHANGELOG.next.asciidoc @@ -149,7 +149,7 @@ https://github.com/elastic/beats/compare/v8.8.1\...main[Check the HEAD diff] - Add warning message to SysV init scripts for RPM-based systems that lack `/etc/rc.d/init.d/functions`. {issue}35708[35708] {pull}36188[36188] - Mark `translate_sid` processor is GA. {issue}36279[36279] {pull}36280[36280] - dns processor: Add support for forward lookups (`A`, `AAAA`, and `TXT`). {issue}11416[11416] {pull}36394[36394] -- Mark `syslog` processor as GA, improve docs about how processor handles syslog messages. {issue}36416[36416] {pull}1[1] +- Mark `syslog` processor as GA, improve docs about how processor handles syslog messages. {issue}36416[36416] {pull}36417[36417] *Auditbeat*