Per the 8.0.0 install:
15/7/2025 -- 10:29:24 - <Warning> -- The syslog output has been deprecated and will be removed in Suricata 9.0.
Please don’t do this. This is one of the best ways to archive alert info.
We do plan to add “syslog” as a filetype (target) for fast.log. That is essentially a 1:1 replacement for the syslog output.
Oh brilliant…good news then thanks Jason!