Getting detailed information about events from the syslog

If Syslog logging is enabled, Kaspersky Scan Engine sends information about events to the syslog daemon, in CEF or RAW format.

In CEF format, the information includes:

• Name of the event.
• Importance level of the event. The higher the level, the higher the importance of the event.
• IP address of the computer on which Kaspersky Scan Engine is running, in IPv4 format.
• Hostname of the computer on which Kaspersky Scan Engine is running.
• Description of the event.

In RAW format, the information includes a description of the event.

See also: Configuring logging in HTTP mode Format of CEF logs in HTTP mode Format of RAW logs in HTTP mode Configuring logging in ICAP mode Format of CEF logs in ICAP mode Format of RAW logs in ICAP mode

Page top