Generic Syslog Collector
Have I understood the following correct?
If I configure a device (that the SIM have no collector for) to send information in syslog format (rfc 3164) I can gather this information using the Generic Syslog Collector onboard the appliance?
When this is setup I can then trigger actions to specific messages from that device or correlate two different messages from this device and then trigger an action.
We are running SIM 4.6 today mostly for windows server event logs, IIS event logs and cisco logs.