Add example config for syslog receiver and add info log (open-telemetry#1747)

cijothomas · web-flow · commit f909741e935e · 2026-01-09T17:37:45.000Z
diff --git a/rust/otap-dataflow/configs/README.md b/rust/otap-dataflow/configs/README.md
@@ -111,6 +111,29 @@ OTLP receiver with performance metrics:
 - Measures and exports performance metrics
 - View metrics at: `http://127.0.0.1:8080/telemetry/metrics?format=prometheus&reset=false`
 
+### `syslog-perf.yaml`
+
+Syslog/CEF receiver with performance metrics:
+
+- Receives syslog messages on UDP `0.0.0.0:5140`
+- Measures and exports performance metrics
+- View metrics at: `http://127.0.0.1:8080/telemetry/metrics?format=prometheus&reset=false`
+
+To send test syslog messages:
+
+```bash
+# Send a single syslog message
+echo "<134>$(date '+%b %d %H:%M:%S') testhost testtag: Test message" | nc -u -w1 127.0.0.1 5140
+
+# Send multiple messages
+for i in {1..100}; do
+  echo "<134>$(date '+%b %d %H:%M:%S') testhost testtag: Test message #$i" | nc -u -w1 127.0.0.1 5140
+done
+
+# Send CEF format message
+echo "<134>$(date '+%b %d %H:%M:%S') testhost CEF:0|Security|IDS|1.0|100|Test Event|5|src=192.168.1.100 dst=10.0.0.50" | nc -u -w1 127.0.0.1 5140
+```
+
 ## Usage
 
 You can use these configurations with the following CLI command:
diff --git a/rust/otap-dataflow/configs/syslog-perf.yaml b/rust/otap-dataflow/configs/syslog-perf.yaml
@@ -0,0 +1,33 @@
+settings:
+  default_pipeline_ctrl_msg_channel_size: 100
+  default_node_ctrl_msg_channel_size: 100
+  default_pdata_channel_size: 100
+
+nodes:
+  receiver:
+    kind: receiver
+    plugin_urn: "urn:otel:syslog_cef:receiver"
+    out_ports:
+      out_port:
+        destinations:
+          - exporter
+        dispatch_strategy: round_robin
+    config:
+      listening_addr: "0.0.0.0:5140"
+      protocol: udp
+  exporter:
+    kind: exporter
+    plugin_urn: "urn:otel:otap:perf:exporter"
+    config:
+      frequency: 1000
+      cpu_usage: false
+      mem_usage: false
+      disk_usage: false
+      io_usage: false
+
+service:
+  telemetry:
+    logs:
+      level: "info"
+    resource:
+      service.name: "syslog-perf"
diff --git a/rust/otap-dataflow/crates/otap/src/syslog_cef_receiver.rs b/rust/otap-dataflow/crates/otap/src/syslog_cef_receiver.rs
@@ -20,6 +20,7 @@ use otap_df_engine::{
 };
 use otap_df_telemetry::instrument::{Counter, UpDownCounter};
 use otap_df_telemetry::metrics::MetricSet;
+use otap_df_telemetry::otel_info;
 use otap_df_telemetry_macros::metric_set;
 use serde::Deserialize;
 use serde_json::Value;
@@ -128,6 +129,13 @@ impl local::Receiver<OtapPdata> for SyslogCefReceiver {
         mut ctrl_chan: local::ControlChannel<OtapPdata>,
         effect_handler: local::EffectHandler<OtapPdata>,
     ) -> Result<TerminalState, Error> {
+        otel_info!(
+            "receiver.start",
+            protocol = format!("{:?}", self.config.protocol),
+            listening_addr = self.config.listening_addr.to_string(),
+            message = "Starting Syslog/CEF Receiver"
+        );
+
         // Start periodic telemetry collection (1s), similar to other nodes
         let timer_cancel_handle = effect_handler
             .start_periodic_telemetry(std::time::Duration::from_secs(1))
