Hi, folks at Balabit/One Identity,
We would like to configure Syslog-ng PE forward the original raw message as it is been received, to a SIEM system.
How should we /opt/syslog-ng/etc/syslog-ng.conf for the source and destination that Syslog-ng PE does not tamper with the original syslog header and message content.
Thank you!
Cheers