• English日本語한국어
  • Log inStart now

Set up network syslog monitoring

Set up your network devices so they send syslog data to New Relic.

Add network syslog data


New Relic prerequisites

Linux host prerequisites

If you're using linux:

  • SSH access to the host
  • Access to install/remove applications and services
  • Network access as defined in the network prerequisites

callout.Host-based SNMP trap receiver

To receive syslogs, KTranslate must bind to UDP 514. In a host-based install, the following command will be included during the install process. When executed, KTranslate will be run with elevated privileges.

sudo setcap cap_net_bind_service=+ep /usr/bin/ktranslate

Docker prerequisites

If you're using docker:

Network syslog devices prerequisites

Network security prerequisites

Check the network security prerequisites for network syslog.

Set up network syslog monitoring in New Relic

  1. Go to one.newrelic.com > Add more data.
  2. Scroll down until you see Network and click Syslog.
  3. Follow the steps outlined in the guided installation process. You can use docker or linux.

one.newrelic.com > Add more data > Network > Syslog to set up Syslog data monitoring.

Here's a short video (2:56 minutes) showing how to set up network syslog monitoring:

If you prefer to do the setup manually, see the instructions below.


ktranslate handles syslog in the following formats: RFC3164, RFC5424, and RFC6587.

Did this doc help with your installation?

Investigate your device syslog messages in the New Relic logs UI, using the following query:


To get better visibility into your network device performance, set up SNMP data monitoring.

To get better visibility into how your network is being used, set up network flow data monitoring.

Copyright © 2023 New Relic Inc.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.