On Fri, 6 Feb 2015, Rainer Gerhards wrote:
I have started to look into this today. But it's a long time since I worked
on it and there have quite some changes since then I thought there was a
function to filter on this but I haven't seen it so far. Maybe it slipped
with the json conversion, maybe I never really finished it. I'll keep you
updated. ..
thanks.
Sent from phone, thus brief.
Am 06.02.2015 23:45 schrieb "David Lang" <[email protected]>:
ping, anyone have an idea better than re_match() type of filters?
I have found that the order is not consistent.
David Lang
On Tue, 3 Feb 2015, David Lang wrote:
the tags show up in the parsed data as "event.tags": [ "cisco",
"ASA-6-302014" ]
so the question is how to make use of them, we don't have much in the way
of array capabilities.
there is the array match for if statements, but I don't know if there is
a way to use it for this?
_______________________________________________
rsyslog mailing list
http://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad
of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you
DON'T LIKE THAT.
_______________________________________________
rsyslog mailing list
http://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE
THAT.
_______________________________________________
rsyslog mailing list
http://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE
THAT.
