New Remap function for parse_syslog_facility

[timansky]

A note for the community

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Similar to request to map syslog severity levels to integer from https://github.com/vectordotdev/vector/issues/5501 it would be helpful to have a means to remap syslog facility keywords to their integer values as well.

Use Cases

When parsing events message, the raw facility values could be enriched with a simple remap transform to down stream processing

Attempted Solutions

No response

Proposal

create a remap-function to_syslog_facility which could produce the facility name:

parse_syslog_facility("authpriv") => 10

References

No response

Version

No response

[jszwedko]

Makes sense to me, thanks for the request @timansky . We'd be happy to see a PR for this if you or someone else feels motivated.

[timansky]

I'll try, looks simple

[jszwedko]

I'll try, looks simple

🥳 You can see the PR you linked to, https://github.com/vectordotdev/vector/issues/5501, as an example.