So looking at the logs I can see the FW entries in two folders
[1]: Syslog Consolidated Log
&
[6]: User Log
I'm making an educated guess that those folder locations are as follows?
/var/log/syslog
&
/var/log/user
I've had a look at the connectors and they seem quite device specific, how close does the configured connector have to be?
Is it a matter of finding one which processes the syslog entry the best, or does it need to exactly match the format/structure of the syslog message for the messages to appear within the LEM interface.
again thanks for the input.
Lewis.