I just use Boolean much easier :)
On Monday, February 1, 2016 at 9:46:16 PM UTC+2, Mehmet Ali Büyükkarakaş wrote: > > Hello everybody, > > I have a log like this from Doubletake for Linux. > > bl-db01 02/01/2016 21:16:53.000000 14762 140124060886784 52 2 0 Total > number of pauses: 0 > > The fields should be > sourceserver, date, time, PID, ThreadID, SequenceNumber, Severity, > MessageID, Message > > I want to put this raw syslog msg to fields and index in Graylog. > Could you help me please to solve it quickly ? > > And how can I learn to convert these raw msgs and put into fields of > graylog ? I have some resources about RegEx but using regex into graylog is > not clear for me. (Dont redirect me to graylog help page, please) > Thank you in advance. > > Mehmet > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/b4be5345-77cd-4279-b03e-e3246617f53a%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
