Support

Support for business applications

Kaspersky Scan Engine

System audit

Getting detailed information about events from the syslog
Kaspersky Scan Engine
Нет результатов
Knowledge Base Online Help
FAQ System requirements Forum Contact support Recovery tools Product videos

Getting detailed information about events from the syslog

March 5, 2024

ID 221189

If Syslog logging is enabled, Kaspersky Scan Engine sends information about events to the syslog daemon, in CEF or RAW format.

In CEF format, the information includes:

  • Name of the event.
  • Importance level of the event. The higher the level, the higher the importance of the event.
  • IP address of the computer on which Kaspersky Scan Engine is running, in IPv4 format.
  • Hostname of the computer on which Kaspersky Scan Engine is running.
  • Description of the event.

In RAW format, the information includes a description of the event.

See also:

Configuring logging in HTTP mode

Format of CEF logs in HTTP mode

Format of RAW logs in HTTP mode

Configuring logging in ICAP mode

Format of CEF logs in ICAP mode

Format of RAW logs in ICAP mode

Kaspersky Professional Services
Implementation services. Health check and security system configuration. Contact us if you need expert help.
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.