Hi there,
intentionally we have a very simple Setup: We're forwarding certain logfiles from our windows Servers to kiwi syslog Server by free solarwinds forwarding tool. In a second step we're pushing them in a mssql-db. There you can use the preconfigured DB-Formats, which provides - i think so - the fields supported by the syslog protocol. Is it possible to extract the windows-event-id from the Messages and write it to a separate db-row?
Grateful for any hints...
Thanks