LegacyTel v1.0.0 Release

LegacyTel v1.0.0: Mainframe & Legacy Log Observability Agent

We are proud to announce the initial production-ready release of LegacyTel (v1.0.0), a high-performance, lightweight, open-source log forwarding and normalization agent written in pure Go.

LegacyTel bridges the observability gap between classic enterprise systems (IBM z/OS Mainframe, IBM i / AS/400, and HPE NonStop / Tandem) and modern security analytics platforms. It acts as an open-source, zero-dependency alternative to expensive, heavy, proprietary forwarders.

---

🚀 Key Architectural Highlights

• Standard-Library Only Build: Compiled using only the Go standard library with zero third-party dependencies. This guarantees a tiny memory footprint (<25MB RAM under peak loads), static compilation, and painless deployment on highly restricted legacy architectures.
• OpenTelemetry Logs Alignment: Natively decodes raw operational logs (z/OS SMF records, AS/400 QAUDJRN, and Tandem NonStop EMS distributor streams) and normalizes them into the structured OpenTelemetry LogRecord Specification with rich resource and attribute metadata.
• Sleek Glassmorphic Observability Console: Features an embedded HTTP/SSE web interface served locally on port 8080. Offers real-time circular SVG health telemetry gauges, custom color-coded log consoles, interactive keyword filtering, and slide-out JSON inspectors to validate OTel schemas.
• Secured Data in Transit (TLS & mTLS): Native support for TLS 1.2/1.3 in-transit encryption and Mutual TLS (mTLS). Enables cryptographical client-identity verification, ensuring only authorized legacy nodes can stream audit events.
• SIEM-Neutral Dual Exporters: Built-in batch pipelines for OTLP/HTTP (generic modern SIEM ingestion like Microsoft Sentinel, Elastic, Datadog, or Chronicle) and generic Syslog (CEF / LEEF) for legacy security collectors (like QRadar or ArcSight).
• Troubleshooting Audits & Heartbeats: Built-in local alerts logging to a dedicated history folder, coupled with automatic agent startup and 24-hour status heartbeats (SS05) to prevent silent gateway failures.

---

📦 Downloadable Asset Packages Directory

We have provided standalone, platform-specific releases compiled natively with zero external dependencies. Each package contains the executable, configuration YAML, certificates generator, static dashboard assets, and a self-contained installation manual (MANUAL.md) tailored to that platform's engineering department:

• 📘 LegacyTel-iseries-ppc64.zip: Optimized standalone package for IBM i (AS/400 / iSeries) partitions, featuring a self-contained IBM i DCM and QAUDJRN auditing guide.
• 📗 LegacyTel-linux-amd64.zip: Standard release for enterprise Linux Gateway server deployments, featuring a generic SIEM and Cribl Stream pipeline integration manual.
• 📙 LegacyTel-windows-amd64.zip: Optimized release for Windows Server gateways.
• 📓 LegacyTel-macos-arm64.zip: Native Apple Silicon release for local evaluation, architectural testing, and simulation.

Note on z/OS Mainframe Deployment:
Due to common mainframe change-control policies, z/OS systems programmers overwhelmingly prefer Gateway Mode (recommended). Deploy the Linux/Windows package on a centralized server, and configure AT-TLS / CDP on z/OS to stream SMF logs securely over the network to the Gateway as detailed in the master DEPLOYMENT.md.

---

⚡ Quick Start (Local Evaluation)

To spin up a local evaluation of the agent and view the glassmorphic dashboard:

1. Download and extract LegacyTel-macos-arm64.zip (on Apple Silicon) or the respective package for your operating system.
2. Open your terminal, navigate to the folder, and run:

   ./legacytel