[syslog-ng] Packet fragmentation issue

Hi all,

I'm running syslog-ng 2.4.1, log sources send to a log server which beside keeping the original data as is in files, forwards them in real time to a SIEM, spoofing source IP.

My problem comes after some logs are too long to fit in a single frame, log server fragments those packets when sending them to SIEM and spoofing is not performed for them.

Enviado desde mi iPhone
______________________________________________________________________________
Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng
FAQ: http://www.balabit.com/wiki/syslog-ng-faq

• This message: [ Message body ]
• Next message: José Moreno: "Re: [syslog-ng] Packet fragmentation issue"
• Previous message: Jenei Gábor: "[syslog-ng] start problems"
• Next in thread: José Moreno: "Re: [syslog-ng] Packet fragmentation issue"
• Reply: José Moreno: "Re: [syslog-ng] Packet fragmentation issue"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]