Document Check Point syslog structured-data variants by mavam · Pull Request #230 · tenzir/docs

mavam · 2026-03-02T10:28:04Z

Summary

document support for common Check Point structured-data variants in parse_syslog and read_syslog
add examples for key:"value" parameters, semicolon separators, and missing SD-ID handling
note that missing SD-ID payloads are normalized under structured_data.checkpoint_2620

Functional PRs

Refactor syslog structured-data parsing for Check Point dialect tenzir#5851

## Summary - support common Check Point structured-data variants in RFC 5424 syslog records - normalize missing SD-ID payloads under `checkpoint_2620` - keep the RFC parser path unchanged and use a dedicated Check Point fallback parser - add regression tests for `parse_syslog()` and `read_syslog` ## Testing - `uvx tenzir-test --root test-legacy --match checkpoint_dialect` - `uvx tenzir-test --root test-legacy --match syslog` ## Changelog - Added unreleased `feature` entry: "Check Point syslog structured-data dialect parsing" ## Documentation PR - tenzir/docs#230

Document Check Point syslog dialect support

52a21be

github-actions bot added reference Reference documentation integration Integration documentation labels Mar 2, 2026

mavam mentioned this pull request Mar 2, 2026

Refactor syslog structured-data parsing for Check Point dialect tenzir/tenzir#5851

Merged

mavam added 3 commits March 2, 2026 11:31

Use parse_syslog in Check Point example

a03396a

Use from_file example for read_syslog

dc57951

Rename Check Point SD-ID in syslog docs

e17f59d

mavam merged commit 99d393d into main Mar 4, 2026
7 checks passed

mavam deleted the topic/checkpoint-syslog-parsing branch March 4, 2026 09:27

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Document Check Point syslog structured-data variants#230

Document Check Point syslog structured-data variants#230
mavam merged 4 commits intomainfrom
topic/checkpoint-syslog-parsing

mavam commented Mar 2, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

mavam commented Mar 2, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Summary

Functional PRs

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

mavam commented Mar 2, 2026 •

edited

Loading