TMWS Syslog Forwarding Tool Release Notes

Rocky Linux 9 used as the base image

Uses Rocky Linux 9 to replace CentOS 7 as the base image.

OpenSSL upgrade

Upgrades OpenSSL to fix the vulnerabilities CVE-2022-4203, CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0216, CVE-2023-0217, CVE-2023-0286, and CVE-2023-0401.

Upgrades the Sudo version

This hotfix upgrades the Sudo version to resolve the vulnerability CVE-2023-22809.

MAC address supported for cloud syslog forwarding

Supports forwarding the MAC address field from the TMWS cloud to your organization's syslog server.

Shows a UTC timestamp for the rt field in CEF access logs

This hotfix solves the problem that the rt field does not show as a UTC timestamp in the CEF access logs generated using mapping type 2.

TCP supported as a protocol for syslog forwarding

Allows you to select TCP, in addition to UDP, as the protocol for forwarding syslog messages from TMWS cloud to your syslog server.

Cloud syslog forwarding tool enhancement

Updates the cloud syslog forwarding tool to support connection to the TMWS cloud using proxy.

New syslog forwarding tool version to support audit logs

Releases a new version of the syslog forwarding tool to send not only access logs but also audit logs on the management console to your organization's syslog server, in both types of CEF syslog key-value mapping that are already supported.

Two types of CEF syslog formats supported

Supports predefined formats and user-defined formats for CEF key-value mapping.