Hello everyone, I have a problem with the syslog messages from a Fortigate. I´m using a bunch of extractors to split up the syslog message from the Fortigate into fields, which is working very good. But sometimes in the URL-Log of the Fortigate contains a random “=” & this is somehow creating anot…

Fortigate - Values with "=" are getting splited even without an existing extractor for it

gsmith (GSmith) July 6, 2021, 9:11pm 4

Hello,

That will happen when not using the input to ingest your logs.

Yes, our inputs are Raw/Plaintext UDP and we use ports above 1024.

1 Like

Topic		Replies	Views
Fortigate field mapping problem Graylog Central (peer support)	4	1513	March 25, 2020
2.2.3 Fortigate Parsing Graylog Central (peer support)	4	3626	May 15, 2018
Spliting a Syslog Output into fields Graylog Central (peer support)	5	1379	January 28, 2019
Key Value Pairs Graylog Central (peer support)	8	2785	January 31, 2018
Drop field with random name Graylog Central (peer support)	5	238	March 20, 2024