WinSyslog 14.3 Final (Build Service 14.3.0.580/Client 14.3.0.605)

Release Date: 2017-09-19

Build-IDs: Service 14.3.0.580, Client 14.3.0.605

 Features

  • Configuration Client: Added DebugLog Viewer utility which can be used to analyze and filter the service debug log.
  • Configuration Reload: The random delay can now set up to 24 hours and does not affect the service control manager communication anymore.
  • Send to Communication Port Action: Comport are now kept open and the connection will be reused each time the action is called.
  • Debug Output: The format has been extended to include additional data and reformatted in many cases.
  • Engine: Added automatic crash generation and report function. If crashes can be caught internally, a dumpfile will be generated and send to Adiscon if allowed in Debug options.

 Bugfixes

  • Syslog Action: Fixed an issue parsing IPv6 Address. When an IPv6 Address
    was used, the last digit pair was incorrectly removed to be set as port.
  • Post Process Action: Fixed an issue which caused the service to stop working on automatic configuration reload.

You can download Free Trial Version of WinSyslog.

WinSyslog 14.2 Final (Build Service 14.2.0.575/Client 14.2.0.601)

Release Date: 2017-07-24

Build-IDs: Service 14.2.0.575, Client 14.2.0.601

 Features

  • SNMP Trap Receiver: Added support to print OCTET STRINGS with format hints. Format hints are now properly used using internal NET-SNMP functions. Support for encoding detection does not work for those SNMP Variables.
  • Syslog Action: Added support to overwrite Syslog Priority/Facility
  • File Action: Added option to control the Filehandle timeout when using dynamic filenames.
  • Property Engine: Added two new property replacer options “toipv4address” and “toipv6address” to resolve a property into a valid IPv4 or IPv6 Address.
  • Filter Engine: Implemented a new regular expressions compare operation.
    More details on how to use REGEX can be found in the new documentation.
  • Configuration Reload: Added new options to add a random delay between configuration checks. The delay is limited to 60 seconds as it will also delay the service control manager communication.

 Bugfixes

  • Syslog Action: Fixed bug in Syslog Cache processing when saved messages were larger than 4096 bytes.
  • File Action: Fixed closing filehandles on very busy systems.
  • Filter Engine: Fixed Extended IP Filtering when using lower or greater compare operation.
  • Normalize Action: Removed incorrect NULL Byte at the end of the INPUT String.
  • File Configuration: Fixed reading Filter values containing backslashes.
    They weren’t removed properly in filter values.

You can download Free Trial Version of WinSyslog.

WinSyslog 14.1 Final (Build Service 14.1.0.571/Client 14.1.0.596)

Release Date: 2017-03-27

Build-IDs: Service 14.1.0.571, Client 14.1.0.596

 Features

  • Updated to OpenSSL 1.0.2k.
  • Configuration Reload: This is a big new core feature allowing the
    service to reload itself automatically after a configuration changed has
    been detected. The feature can be turned off in General-General Options if
    this new behavior is not wanted. By default auto reload will be enabled.
    The latest Configuration Client is required for the feature to fully work.
  • SNMP Receiver: Added new compressed output format for message property.
  • FileConfig: Changed datafile saving method, more reliable when the
    service is stopped unintentionally while updating data state files.
  • Send SNMP action: Added new variable for SNMPv1 AgentIP field. By
    default the property will be set to %source%.
  • Send Syslog Action: Added new option to enable/disable UTF8 BOM. Default
    is enabled like before, but it can be disabled now by configuration so the
    message won’t contain the UTF8 BOM.

 Bugfixes

  • Property Engine: Fixed SystemID and CustomerID properties.
  • FileConfig: Due a missing property (FilterVersion), some of the global
    conditions in rule filters could not be used. This automatically fixes
    itself next time the configuration is saved with the Client.
  • Debug Logging: Completely rewritten debug output for Rule Engine
    (Filters) for better readability and analysis.
  • Fixed an compatibility issue on Windows 2003/XP (failed to start because
    WSAPoll API is missing).
  • FileConfig: Fixed an issue with invalid linefeeds when using includefile
    directive.
  • FileConfig: Fixed EnumRegkey emulation causing EventLog Monitor Services
    to load invalid eventlog channels.
  • Debug Logging: Moved RELP Debugging from minimal to internal
  • SNMP Trap Receiver: Fixed handling of SNMPv1 Enterprise traps. All
    properties are now properly set.
  • SNMP Trap Receiver: Fixed shutdown of Service causing a problem when
    reloading configuration.

You can download Free Trial Version of WinSyslog.

WinSyslog 14.0 Final (Build Service 14.0.0.590/Client 14.0.0.557)

Release Date: 2016-12-08

Build-IDs: Service 14.0.0.590, Client 14.0.0.557

 Features

  • Added Windows 2016 Support.
  • Updated Syslog RFC3195 liblogging library
  • Updated librelp library to 1.2.11
  • Updated net-snmp library to 5.7.3. Net-snmp debug messages are also printed into the Adiscon debug log now.
  • SNMP Trap Receiver: Added support to read UTF8, Shiftjis, EUC-JP encoded strings in SNMP variables.

 Bugfixes

  • File Configuration: Fixed an issue loading file configuration when invalid characters where within config files like UTF8 BOM.
  • Syslog Server: Fixed internal issue when receiving empty syslog messages.
  • Adiscon SNMP Libs: Increased string length to 65536. Also fixed wrong datetimestamp in comments.
  • File Action: Fixed multiple issues in output format related to different file encodings.
  • SNMP Trap Receiver: OID’s are printed as numbers again if mib resolving is disabled.

You can download Free Trial Version of WinSyslog.

WinSyslog 13.3 Final (Build Service 13.3.546/Client 13.3.585)

Release Date: 2016-09-19

Build-IDs: Service 13.3.546, Client 13.3.585

 Features

  • OpenSSL library updated to 1.0.2h.
  • Adiscon SNMP Mib:
    • Changed DisplayString limit from 255 characters to 65536. Now, strings above 255 characters can be send using the adiscon mibs.
  • Permitted Senders:
    • If enabled, these senders cannot be deleted during runtime and have to be configured. Otherwise localhost will be used as default.

 

 Bugfixes

  • Send Syslog Action:
    • Fixed an issue with the “Disable processing, forward as it is” Option. RawSyslogMsg property is used instead of msg property.
  • Send Relp Action:
    • Fixed an issue in the Session Close shutdown procedure which could lead to leaking sessions on Relp Servers.
    • Fixed an issue setting a proper status on failure.
    • Fixed a problem handling socket failures.
  • File Action:
    • Fixed issue detecting the last used file on startup when Circular Logging is enabled.
  • Relp Listener:
    • Fixed Socketsystem startup if only one Relp Listener Service was configured without any other network related services.
  • Syslog Server:
    • Fixed an issue relaying the priority / facility properties on Syslog Forward. The prifac property was not properly recreated if the message source was Syslog.
    • Syslog Server: Fixed an issue with RFC5424 header parsing which partially parsed invalid formatted syslog messages. This broke the original message.
    • Fixed a parsing issue (TCP Protocol only) when the syslog header was missing. When the first characters were a number, TCP Syslog tried to detect octet framing. This failed but the beginning characters of the message were lost. Also octet framing was not disabled resulting in unexpected endings of the message.
    • Fixed an issue with RFC 3164 Syslog Header parsing when “take syslog source from msg” is enabled.
  • Property Replacer:
    • Date related options are now evaluated before and after the property is truncated. But only if a match before the string truncation was not successful.

You can download Free Trial Version of WinSyslog.

WinSyslog 13.2a Released

Release Date: 2016-05-02

Build-IDs: Service 13.2.541, Client 13.2.0.581

 Features

  • Syslog Server: Added support for multiple message separators.
  • Configuration Client: Added support to read and wrote settings by using remote registry services. Requires remote registry service and sufficient access rights.

 

 

 Bugfixes

  • Syslog Server: Fixed source property issue introduced in 13.2.
  • Configuration client:
    •  Fixed Range Start and End fields visibility in filter settings view.
    • Added missing Insert Entries for Event Keyword, Event KeywordID and Event User.

 

 

You can download Free Trial Version of WinSyslog.

WinSyslog 13.2 Released

Release Date: 2016-04-04

Build-IDs: Service 13.2.540, Client 13.2.0.579

 Features

  • Components: Updated NET-SNMP 5.6.2.1 and OpenSSL 1.0.2e.
  • Engine:
    • Enabled support to parse MIBs with labels that contain underscores.
    • When using TLS Mode x509/Name, permitted peers will also checked against the certificate Subject Alternative Name (SAN) now.
  • Syslog Action:
    • Added wait time doubling option for the Diskqueue feature. When enabled, the configured wait time will be doubled until the doubling limit is reached.
    • Added random wait time delay option for the Diskqueue feature. When enabled, a random wait time (up to the configured maximum) will be added to the configured wait time.
    • Added Overrun prevention delay option for the Diskqueue feature. When enabled, the action will sleep for the configured delay between each syslog message.
  • Services TestMode: Added a testmode for Services, currently EventLog Monitor V1 & V2 and File Monitor are supported. When enabling the testmode for a certain service, it will process it’s Events/Files over and over again. So only use this setting for testing purpose.
  • File Based Configuration: Added support for file includes. The feature can be enabled by setting one or both options in the Client Options called “Create individual configuration files for Services” and “Create individual configuration files for RuleSets”. When enabled, the configuration client will split Services and/or Rulesets into separated files. The main configuration file will include these files by a pattern. The Service itself is able to read includes within includes up to a depth level to 10. When using custom (hand written) configuration with includes, the configuration client will only be able to read them. However the client will not be able to maintain (Save) the custom configuration structure.
  • Command line: Added handler for CTRL+C when running the Service in console mode

 

 

 Bugfixes

  • Syslog Server: Fixed a problem receiving RFC3195RAW messages.
    Fixed message timeout handling when no message separator was enabled in Syslog TCP mode.
  • File Action: When using Custom Format, a trailing NULL Byte was written into the file. This was considered a bug, so the NULL Byte is not written anymore.
  • Syslog Action:
    • Fixed an issue when diskqueue files were corrupt. Now corrupted entries are skipped properly.
    • In some cases when the Action was in diskqueue mode, it could happen that the internal retry failed. Cached syslog messages wouldn’t be send until the service restart.
  • SSL/TLS: Actions with support for SSL/TLS (like Send Syslog Action) could fail to send messages if the recipient closed the connection during meantime. The handling of closed connections has been hardened now when TLS/SSL is enabled.
  • Command line: Fixed handling when using more than one command line option
  • File Based Configuration:
    • Fixed a bug reading general options from File configuration.
    • Fixed an issue reading and writing into correct data directories when using custom locations.
    • Fixed an issue detecting if data state files need to be reloaded.
    • Fixed problem reading of Rule and ActionCount properly introduced due changes in the configuration client of build 456.
    • Better error handling when configfile is missing or not accessible.
  • Configuration client:
    • When deleting an item in a datagrid, the Confirm/reset Button become clickable now to save or reset the changes.
    • Fixed invisible encryption checkbox for password fields (Like ODBC Action)
    • The little “Save” Button has been changed to a “Confirm” which is more precisely.
    • Corrected Min/Max values for General->Queue Limit Setting.
    • Removed invisible click areas for all checkboxes and radio buttons.
    • Changed error handling when exporting configuration in file format.
    • Fixed incorrect trimming of spaces at the end of text variables (problem only affected file based configurations)

 

 

You can download Free Trial Version of WinSyslog.

WinSyslog 13.1 Released

Release Date: 2015-06-02

Build-IDs: Service 13.1.535, Client 13.1.0.561

 Features

  • All internal errors are now logged into the EventLog when “Event Warnings” are enabled in general options.
  • Added Rule Date Conditions. By default a rule will always be processed. It can be set to only process messages generated since the installation or custom date.
  • Syslog Server: Added new Option to save original source into custom property when using “Take Source system from Syslog message” option.
  •  SNMP Receiver: Added option for resolving Snmp OID in short format (Last Portion only).

 

 

 Bugfixes

  • SSL Connections: Fixed an issue not using custom configured certificates when TLS anon mod was used.
  • FileConfig Mode: Fixed a bug loading filters properly. Also added support for reloading data variables automatically.
  • Core Engine: Fixed an internal processing bug caused when rebuilding Messages from cache files.
  • Syslog Server: RFC 5424 header parsing fixed, a timestamp can be a NILVALUE now.
  • Syslog Server: Fixed bug ignoring “Take Source system from Syslog message” option when UDP was used.

 

 

You can download Free Trial Version of WinSyslog.