How can mikrotik send log to rsyslog?

simonleung · June 17, 2025, 7:28am

How can mikrotik send log to rsyslog? How do I configure rsyslog.conf?

pe1chl · June 17, 2025, 8:16am

For rsyslog:

# provides UDP syslog reception
module(load="imudp")
input(type="imudp" port="514")

(probably these lines already exist in /etc/rsyslog.conf but are commented out)

tangent · June 17, 2025, 9:38am

Full details here.

Kingfisher63 · June 19, 2025, 9:36am

An important detail is missing there. If you want the rsyslog server use the syslog facility to filter messages (for example to write MikroTik messages to a specific log file), you must set the remote log format to syslog.

/system logging action
set [find name="remote"] remote-log-format=syslog

The default log format does not include the syslog facility (RouterOS 7.18.2).

pe1chl · June 19, 2025, 11:19am

There are different options. It depends on how you want to configure rsyslog.