I have this syslog message which is ALMOST like the standard RFC3164 so the default syslog plugin should pick it up:
<134>1 2021-10-05T08:48:18Z MYSERVER iLO5 - - - XML logout: SomeUser - 22.214.171.124(DNS name not found).
I was reading the RFC and (this is offtopic), I honestly do not understand how to break down the 134; I know it is a bit representation of it being a emergency, critical, etc. but I dont seem to understand it.
The rest seems pretty straight forward.
Is that "1" after <134> messing everything up?
Thank you for the help