In the uri-query field of my IIS logs I have a website that generates
values for this field that is key=value pairs delimited by . Sometimes
this field might have one or two key=value pairs, and sometimes it has as
many as six or seven. I would like to extract those key=value pairs and
bring
Thanks guys for the tips. I have submitted a request to the ideas portal.
On Friday, June 19, 2015 at 11:34:59 AM UTC+2, Marius Sturm wrote:
You can follow these instructions in order to perfom an update on the
appliance:
Hi there Sean,
Not sure what logstash is, but when you search (i.e. for a field) can't
you just append/prepend with a wild card?
E.g. Frequently I search:
source:123.456.*
I think appending wildcards is enabled by default and you'd have to enable
prepending:
graylog-server.conf:
Hello All,
Just started using graylog. Love it. Read the docs, but still having this
problem:
1) Using the web interface I made a TEST input, and setup some extractors.
2) From System|Inputs I select Messages from this input for TEST. Great.
Here's the problem:
1) SOMETIMES, the fields don't
Upgrading from 1.1.2 to 1.1.3, was there any changes in config files ? Can
you blindly copy the config files from 1.1.2 to 1.1.3 ?
On Friday, June 19, 2015 at 9:41:02 AM UTC-7, lennart wrote:
Hey everybody,
I am happy to announce that we just released Graylog v.1.1.3. This
release is
Hi Jesse!
On 23 Jun 2015, at 00:11, Jesse Skrivseth voodood...@gmail.com wrote:
The Message class has several field types that can be explicitly declared
when adding fields to messages. It seems to support:
Double
Long
String
If I want to attach a field as a custom elastic type such
Hi!
Is there any option where I can upload logs to analyze in GrayLog?
I need to import logs from a CISCO ASA device that is not connected to the
network, so I need to include this manually.
Thanks and regards,
By the way sorry for my bad english,
--
You received this message because you
Hi Allan,
You can only upload logs to Graylog by sending them through a network
interface, but you can do that from a different computer than the one
generating the logs.
I would place the log file you want to analyse in a computer that can access
Graylog, then create a raw TCP input in
Hi all,
I'm sending my VMware vCenter server logs and Windows event logs into
Graylog using nxlog-ce to send to GELF UDP inputs.
I'm getting confused as to why the message field is truncated compared
with the full_message.
At this point I have not tried defining any fields in nxlog for these
Hello. I've got a Graylog system running (Ubuntu 14.04) 1.0.2. I'm going to
be upgrading, and have been unable to find any specific instructions. Do I
need to do anything other than install the updated deb packages?
Thanks.
-Pete
--
You received this message because you are subscribed to the
10 matches
Mail list logo