I have a log that posts data in this format: <150>[USER (ID: 1)] [ACTION] [OBJECT] [Mon Sep 15 13:11:26 EDT 2014] ID 40873 Name ......... SOURCECOMPUTER
I would like to extract the USER, ACTION, OBJECT and the Timestamp as separate Fields. Using regex I can select the first one (USER) successfully, my Regex is below: (\[.*?\]) Any ideas on how I can match additional objects in brackets or if there is a more elegant way to parse this data into fields in Graylog2? -- You received this message because you are subscribed to the Google Groups "graylog2" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
