Citrix
Citrix enables you to collect and normalize Citrix logs and lets you analyze the information through the LP_Citrix NetScaler dashboard. The dashboard visualizes users successful/failed logins, accessed applications, HTTP Requests and data utilizations. You can customize it to perform in-depth analysis by changing the data used in a search.
Enhancement
PLUG-16754
Updated the CitrixNetScalerCompiledNormalizer to improve parsing accuracy and normalization.
Past Releases
Citrix v5.6.0 ▾
Enhancement
PLUG-15929, PLUG-1641788599, 88911, 89416, 89547, 88911, 89416, 89547
Citrix Netscaler compiled normalizer now supports parsing a subset of Syslog logs from Netscaler v14.1.
Bug Fixes
PLUG-1584588163, 88911 85680
After upgrading to Logpoint v7.5.0, the CitrixADCCompiledNormalizer encountered compatibility issues due to a deprecated regex pattern, preventing the normalizer from functioning correctly.
PLUG-1328585680
In some cases, CitrixNetscaler logs were not normalized.
PLUG-1650589396
CitrixNetscalerCompiledNormalizer logs were stored with incorrect timestamps because the normalizer used the event’s Start Time rather than the Syslog header for log_ts.
Citrix v5.4.0 ▾
Enhancements
KB-22640
Added Syslog Collector based Netscaler log source template, simplifying the log source configuration process. To learn more, go to Creating Log Source via a Template.
KB-24430
Added CompiledNormalizer Date Preference (CNDP) support to CitrixNetScalerCompiledNormalizer, ensuring consistent date format in normalized CitrixNetScaler logs. Go to CNDP to learn how to configure it.
KB-22821
For Netscaler login logs when normalized by CitrixNetScalerCompiledNormalizer:
- Added the Successful label and success as the Status field value for a successful login logs.
- Added the Failed label and failed as the Status field value for a failed login logs. The reason field maps the status field value of the raw log.
Bug Fix
KB-24789, KB-22265, KB-22211
Some CitrixNetScaler logs were not correctly normalized by LP_Citrix NetScaler, LP_Citrix Secure Gateway, LP_Citrix XenDesktop, LP_Citrix XenMobile, LP_Citrix SDWAN
CitrixNetScalerCompiledNormalizer and CitrixADCCompiledNormalizer.
CitrixNetScalerCompiledNormalizer and CitrixADCCompiledNormalizer.
Key Information
You can configure a date format for CitrixNetScalerCompiledNormalizer and CitrixADCCompiledNormalizer using CNDP.
Citrix v5.3.0 ▾
Enhancements
KB-1932371417
Added a new CitrixADCCompiledNormalizer to support Citrix ADC WebApp logs.
KB-20318
CitrixNetScalerCompiledNormalizer is now made configurable to select a date format (European or American).
KB-1909270972
The log_ts field is now normalized by CitrixNetScalerCompiledNormalizer.
KB-1976172159
Added new signatures in CitrixNetScalerCompiledNormalizer to support the Citirix Netscalar ADC logs.
Bug Fixes
KB-17854, KB-20469, KB-2020573609, 72766
Some Citrix and Citirix Netscaler logs were not correctly normalized by LP_Citrix NetScaler, LP_CitrixSDWAN, LP_CitrixSecure Gateway, LP_CitrixXenDesktop, CitrixNetscalerCompiledNormalizer and LP_CitrixXenMobile.
KB-1991872466
The source_address field was not properly normalized by LP_Citrix Netscaler.
Support
If you have any questions or require assistance, create a support ticket.
Comments
Article is closed for comments.
Dashboard package as shown in the screenshot. Where is the screeshot.
Hi!
It doesnt normalize the logs. Still just text. And dashboards show nothing.
I have the logs and everything works fine with getting the logs to logpoint. But the normalization does not work.