DHCP Syslog messages on Sophos Firewall

Thank you all for reply. Let me explain what I want to achieve. I would like to send syslog messages related to DHCP lease to Inventory Asset Management Tool which has passive network scanning feature to discover new assets on the network. It "sniffs" packets and find related information and update inventory automatically. As soon as new device is connected to the network and "ask" for an IP, it will be recognized and discovered as new asset on the network.

So , it is not a question, can I find it in EventViewer, IPv4 lease table or in a log file but rather send that information somewhere else.

I have added new syslog server in System services -> Log settings and select Events log type. I have got log messages on target server in format like below:

06-07-2022    16:30:46    Daemon.Info    10.28.0.1    device="SFW" date=2022-06-07 time=16:30:46 timezone="CEST" device_name="XG330" device_id=xxxx log_id=063411660020 log_type="Event" log_component="DHCP Server" log_subtype="System" status="Renew" priority=Information ipaddress="10.28.11.5" client_physical_address="00:15:5d:0b:09:12" client_host_name="" message="Lease IP 10.28.11.5 renewed for MAC 00:15:5d:0b:09:12" raw_data="10.28.11.5   Tue 07 Jun 16:30:46 2022   Wed 08 Jun 16:30:46 2022   00:15:5d:0b:09:12   MGT-SRV010"

However I have got field client_host_name empty, while IPv4 lease table contains Client host-name. Host name is located in RAW_DATA as well.

Do you maybe know why client_host_name is empty in these syslog messages ?

Thank you all for reply. Let me explain what I want to achieve. I would like to send syslog messages related to DHCP lease to Inventory Asset Management Tool which has passive network scanning feature to discover new assets on the network. It "sniffs" packets and find related information and update inventory automatically. As soon as new device is connected to the network and "ask" for an IP, it will be recognized and discovered as new asset on the network.

So , it is not a question, can I find it in EventViewer, IPv4 lease table or in a log file but rather send that information somewhere else.

I have added new syslog server in System services -> Log settings and select Events log type. I have got log messages on target server in format like below:

06-07-2022    16:30:46    Daemon.Info    10.28.0.1    device="SFW" date=2022-06-07 time=16:30:46 timezone="CEST" device_name="XG330" device_id=xxxx log_id=063411660020 log_type="Event" log_component="DHCP Server" log_subtype="System" status="Renew" priority=Information ipaddress="10.28.11.5" client_physical_address="00:15:5d:0b:09:12" client_host_name="" message="Lease IP 10.28.11.5 renewed for MAC 00:15:5d:0b:09:12" raw_data="10.28.11.5   Tue 07 Jun 16:30:46 2022   Wed 08 Jun 16:30:46 2022   00:15:5d:0b:09:12   MGT-SRV010"

However I have got field client_host_name empty, while IPv4 lease table contains Client host-name. Host name is located in RAW_DATA as well.

Do you maybe know why client_host_name is empty in these syslog messages ?