Hello everyone, here goes my first question!
I have got many distributed pfSense devices through the internet. Those machines use syslogd(8) to log events to a remote machine running rsyslog.
My server can not manage to identify the source of the messages, at least not from its host field, as many of those pfSense boxes have got dynamic public IP and my ISP would not let me fix a FQDN.
The point is, is it possible for syslogd(8) to prepend some text at the beginning of the MSG field (or any other field)?
That would solve my issue, as in the server I should but write a rule similar to
if $MSG contains "this prepended text" then "voilà"
I have got many distributed pfSense devices through the internet. Those machines use syslogd(8) to log events to a remote machine running rsyslog.
My server can not manage to identify the source of the messages, at least not from its host field, as many of those pfSense boxes have got dynamic public IP and my ISP would not let me fix a FQDN.
The point is, is it possible for syslogd(8) to prepend some text at the beginning of the MSG field (or any other field)?
That would solve my issue, as in the server I should but write a rule similar to
if $MSG contains "this prepended text" then "voilà"