Released: Tue, 29 Nov 2016
Initial PE 7.0 release.
No bugs were fixed in this release.
You can use an external database file to append custom name-value pairs to incoming logs, thus extending, enriching, and complementing the data found in log messages. For details, see Chapter 15, Enriching log messages with external data in The syslog-ng Premium Edition 7.0 Administrator Guide.
You can correlate and aggregate information from log messages using a few simple filters that are similar to SQL GROUPBY statements. You do not even have to configure a pattern database. For details, see Chapter 14, Correlating log messages in The syslog-ng Premium Edition 7.0 Administrator Guide.
Improved configuration flexibility
You can define configuration objects inline without having to define them in a separate object. Additionally, you can use embedded log statements, junctions and in-line object definitions within source, destination, filter, rewrite and parser definitions. For details, see Section 5.4, Defining configuration objects inline and Section 5.5, Using channels in configuration objects in The syslog-ng Premium Edition 7.0 Administrator Guide.
Features available only in syslog-ng PE 6 LTS
Several features that are available in syslog-ng Premium Edition 6 LTS are not yet implemented in syslog-ng PE 7. In case you need to use these features, use syslog-ng PE 6 LTS, or contact the One Identity Support Team for advice. The features missing from syslog-ng PE 7 will become gradually available in future releases of syslog-ng PE.
Storing messages in encrypted files (logstore()).
Reliable Log Transfer Protocol™ (RLTP™).
The SNMP destination (snmp()).
The SQL source (sql()).
The persist-tool application.
The syslog-ng-query application.
The allow-compress(), ca-dir-layout(), and cert-subject() options related to TLS transport.
The syslog-ng PE 7 application is currently supported only on Linux platforms. For a detailed list, see Section 1.6, Supported platforms in The syslog-ng Premium Edition 7 Administrator Guide.
The failover-servers() and spoof-interface() options of the network() and syslog() destinations.
The read-old-records(), recursive() and use-syslogng-pid() options of the file() source. Also, wild-cards in filenames are not supported.
The replace(), cut(), and format-snare() template-functions.
FIPS-compliant packages are not available.
Manual configuration upgrade needed
Since there are some missing features/options it is possible you will need to change parts of your configuration file. In case you need help with upgrading please contact the One Identity Support Team for advice.
Platforms supported in syslog-ng PE 7
Debian 7 (wheezy)
Debian 8 (jessie)
Oracle Linux 7
Red Hat EL 7
Ubuntu 12.04 LTS (Precise Pangolin)
Ubuntu 14.04 LTS (Trusty Tahr)
Ubuntu 16.04 LTS (Xenial Xerus)
Platforms not supported in syslog-ng PE 7:
Oracle Linux 5, 6