LogoLogo
WebsiteBlogLogin
  • Onum Docs
  • Use Cases
  • Videos
  • Release Notes
  • Welcome
  • Getting Started
    • About Onum
    • Architecture
    • Deployment
    • Getting Started with Onum
    • Understanding The Essentials
      • Cards and Table Views
      • Data Types
      • Graph Calculations
      • The Time Range Selector
    • Key Terminology
  • THE WORKSPACE
    • Home
    • Listeners
      • Cloud Listeners
      • Listener Integrations
        • Amazon SQS
        • Amazon S3
        • Apache Kafka
        • Azure Event Hubs
        • Cisco NetFlow
        • Google Pub/Sub
        • HTTP
        • HTTP Pull
        • Microsoft 365
        • OpenTelemetry
        • Syslog
        • TCP
      • Labels
    • Pipelines
      • Building a Pipeline
        • AI Assistant
          • AI Pipeline Assistant
          • AI Action Assistant
      • Listeners
      • Actions
        • Advanced
          • Anonymizer
          • Bring Your Own Code
          • Field Generator
          • For Each
          • Google DLP
          • HTTP Request
          • Redis
        • Aggregation
          • Accumulator
          • Group By
        • AI
          • Amazon GenAI
          • BLIP-2
          • Cog
          • Google GenAI
          • Llama
          • Replicate
        • Detection
          • Sigma Rules
        • Enrichment
          • Lookup
        • Filtering
          • Conditional
          • Sampling
        • Formatting
          • Message Builder
        • Transformation
          • Field Transformation
            • Field Transformation Operations
              • Arithmetic / Logic
                • Divide Operation
                • Median
                • Multiply Operation
                • Subtract Operation
                • Sum Operation
              • Code tidy
                • JSON Minify
              • Control characters
                • Escape String
                • Unescape String
              • Conversion
                • Convert Area
                • Convert Data Units
                • Convert Distance
                • Convert Mass
                • Convert Speed
                • List to String
                • String to List
              • Data format
                • From Base
                • From Base64
                • From Hex
                • To Base
                • To Base64
                • To Hex
              • Date / Time
                • From Unix Timestamp
                • To Timestamp
                • To Unix Timestamp
                • Translate Datetime Format
              • Encoding / Decoding
                • From Binary
                • To Binary
                • To Decimal
              • Encryption / Encoding
                • JWT Decode
              • File system permissions
                • Parse Unix file permissions
              • Format conversion
                • CSV to JSON
                • JSON to CSV
              • Hashing
                • Keccak
                • MD2
                • MD4
                • MD5
                • SHA0
                • SHA1
                • SHA2
                • SHA3
                • Shake
                • SM3
              • Networking
                • Defang IP Address
                • Defang URL
                • Extract IP Address
                • Fang IP Address
                • Fang URLs
                • IP to Hexadecimal
                • Parse URI
                • URL Decode
                • URL Encode
              • Other
                • Parse Int
              • String
                • Length
              • Text sample adding
                • Pad Lines
              • Utils
                • Byte to Human Readable
                • Count Occurrences
                • CRC8 Checksum
                • CRC16 Checksum
                • CRC24 Checksum
                • CRC32 Checksum
                • Credit Card Obfuscator
                • Filter
                • Find and Replace
                • Regex
                • Remove Whitespace
                • Reverse String
                • Shuffle
                • Sort
                • Substring
                • Swap Case
                • To Lower Case
                • To Upper Case
          • Flat JSON
          • JSON Transformation
          • JSON Unroll
          • Math Expression
          • Parser
            • PCL (Parser Configuration Language)
        • Utils
          • Unique
      • Data sinks
      • Bulk Changes
      • Publishing & Versioning
      • Test your Pipeline
    • Data sinks
      • Data sink Integrations
        • Amazon S3
        • Amazon SQS
        • Azure Blob Storage
        • Azure Event Hubs
        • Devo
        • Google BigQuery
        • Google Cloud Storage
        • Google Pub/Sub
        • HTTP
        • Jira
        • Mail
        • Null
        • OpenTelemetry
        • PagerDuty
        • Pushover
        • Qradar
        • Relational Databases
        • ServiceNow
        • Slack
        • Splunk HEC
        • Syslog
        • TCP
        • Telegram
        • Twilio
    • Alerts
  • YOUR VAULT
    • Enrichment
    • Data History
    • Actions
  • ADMINISTRATION
    • Tenant Menu
    • Global Settings
      • Your Account
      • Organization Settings
        • Secrets Management
      • Tenant
        • Authentication
        • Users
        • Activity Log
  • MARKETPLACE
    • Onum Marketplace
      • Pulling Pipelines
        • Netskope Events Alert
        • OKTA System Log API
        • Sophos Connector SIEM
Powered by GitBook
On this page
  • Overview
  • Configuration
  • Metadata
  • Metrics
  • Configuration
  • Output configuration

Was this helpful?

Export as PDF
  1. THE WORKSPACE
  2. Data sinks
  3. Data sink Integrations

Devo

Most recent version: v1.2.0

PreviousAzure Event HubsNextGoogle BigQuery

Last updated 1 month ago

Was this helpful?

See the changelog of this Data sink type .

Overview

Onum supports integration with Devo.

Select Devo from the list of Data sink types and click Configuration to start.


Configuration

Now you need to specify how and where to send the data, and how to establish a connection with Devo.

Metadata

Enter the basic information for the new Data Sink.

Parameters
Description

Name*

Enter a name for the new Data Sink.

Description

Optionally, enter a description for the Data Sink.

Tags

Add tags to easily identify your Sink. Hit the Enter key after you define each tag.


Metrics

Configuration

Now add the configuration to establish the connection.

Parameters
Description

Devo Cloud*

Net buffer size

Define the number of bytes allocated for buffering network data during transmission to Devo.

Write timeout (ms)

Enter the number of milliseconds to wait before considering the request a timeout.

Idle timeout

Enter the milliseconds the connection remains open and idle before it is automatically terminated or closed.

Dial timeout

The maximum time (in ms) allowed for establishing a connection before the attempt is aborted.

Connection Time to Live

The maximum duration the connection remains active before it is forcibly closed, regardless of whether it is idle or in use.

TLS Configuration

Parameters
Description

Certificate*

This is the predefined TLS certificate.

Private Key*

The private key of the corresponding certificate.

Root CA*

The path containing the CA certificate


Click Finish when complete.

You will see the results in Devo as a column in your my.app table.

Output configuration

When you use this sink in a Pipeline, you can configure the output parameters. This is where you give the message the required format to be processed in Devo.

If your message already has the required format, toggle Passthrough to send on the message exactly as it is received by the sink.

Uncheck Passthrough to manually format the message:

Type

Parameter
Description

Output type

The Syslog format to send in: - the original BSD format (RFC3164) - the “new” format (RFC5424)

You must select the incoming fields that correspond to each individual value in order to build the end message in Devo. The fields to configure will differ depending on the Syslog type selected.

Header

Enter the header parameters

  • Priority* /Severity* & Facility* - the field corresponding to the Priority OR the fields corresponding to the Severity and Facility that will be used to make the Priority field.

  • Timestamp - the field containing the Timestamp value.

  • Hostname - the field containing the hostname.

Message

Enter the fields used to build the body of the message

  • Tag - the field contaning the tag.

  • ProcId - the incoming field with the process ID.

  • Content - the field used as the content field.

Header

Enter the header parameters

  • Priority* /Severity* -Facility* - the field corresponding to the Priority OR the fields corresponding to the Severity and Facility that will be used to make the Priority field.

  • Timestamp - the field containing the Timestamp value.

  • Hostname - the field containing the hostname.

  • Appname - the field containing the application name.

  • ProcID - the field containing the Process ID.

  • Message ID - the field containing the Message ID.

Structured data

  • Structured data - where to source the structured data from.

Message

Enter the fields used to build the body of the message

  • Message - the field containing the message body.

If you are unsure about the veracity of the fields you have chosen, you can click Validate to check if they are valid. For the Syslog RCF 3164 type, you have the option to auto-fix the values to correctly populate them.

Decide whether or not to include this Data sink info in the metrics and graphs of the area.

Specify the cloud environment you wish to send your data to (US, EU or CA). For details on the URLs, .

Home
see here
here