integration third party monitoring tools.

I am currently using SafeLine WAF in our environment and would like to integrate third-party monitoring tools such as Prometheus and Grafana for enhanced real-time visibility and log monitoring.

While I understand that SafeLine supports Syslog output, I have not been able to find clear or comprehensive documentation on how to effectively integrate this with external monitoring solutions.

Could anyone please provide a step-by-step guide or recommend best practices for:

Forwarding SafeLine WAF logs via Syslog

Converting these logs into Prometheus-compatible metrics (e.g., using exporters like mtail or syslog-ng)

Visualizing and setting up alerts in Grafana

The goal is to establish a reliable and scalable monitoring stack to track security events, blocked requests, and traffic analytics in real-time.

Any help, working examples, or references would be greatly appreciated.

Currently, there is no tutorial available for this, but you can refer to the SafeLine Syslog Event Format Specification as a reference: https://community.codenewbie.org/sharon428931/real-time-log-forwarding-from-safeline-with-syslog-4fhh