Sorry for waking up an older thread... however I have an LDAP server out of my controller which is absolutely smashing my Graylog servers due to a misconfigured logging level. Unfortunately the sys admins for this server are pretty much unresponsive so I think my only choice is to drop this via the drools rules.
Quick question before I do this though... how expensive are the drools rules to process? Does it get dropped/filtered prior to the actual message processing? Or does it still get processed and then dropped? Cheers, Pete On Saturday, 2 May 2015 06:02:51 UTC+10, Stephen Fox wrote: > > http://docs.graylog.org/en/1.0/pages/drools.html > > Its somewhat documented. There are a few examples on that page as well but > I wish there were more examples. > > Rule documentation here: > > http://docs.jboss.org/drools/release/5.5.0.Final/drools-expert-docs/html/ch04.html > > It would be cool If graylog2 had the feature to filter out messages in the > web interface rather than hacking around in drool rules. > -- You received this message because you are subscribed to the Google Groups "graylog2" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
