[graylog2] Variable Length Key=Value pairs

In the uri-query field of my IIS logs I have a website that generates values for this field that is key=value pairs delimited by . Sometimes this field might have one or two key=value pairs, and sometimes it has as many as six or seven. I would like to extract those key=value pairs and bring

Re: [graylog2] Re: hyper-v virtual appliance

Thanks guys for the tips. I have submitted a request to the ideas portal. On Friday, June 19, 2015 at 11:34:59 AM UTC+2, Marius Sturm wrote: You can follow these instructions in order to perfom an update on the appliance:

[graylog2] Re: Graylog 0.20.2 field search trouble

Hi there Sean, Not sure what logstash is, but when you search (i.e. for a field) can't you just append/prepend with a wild card? E.g. Frequently I search: source:123.456.* I think appending wildcards is enabled by default and you'd have to enable prepending: graylog-server.conf:

[graylog2] Newbie Questin (Web Interface)

Hello All, Just started using graylog. Love it. Read the docs, but still having this problem: 1) Using the web interface I made a TEST input, and setup some extractors. 2) From System|Inputs I select Messages from this input for TEST. Great. Here's the problem: 1) SOMETIMES, the fields don't

[graylog2] Re: [ANNOUNCE] Graylog v1.1.3 has been released

Upgrading from 1.1.2 to 1.1.3, was there any changes in config files ? Can you blindly copy the config files from 1.1.2 to 1.1.3 ? On Friday, June 19, 2015 at 9:41:02 AM UTC-7, lennart wrote: Hey everybody, I am happy to announce that we just released Graylog v.1.1.3. This release is

Re: [graylog2] Graylog plugin - elastic field types

Hi Jesse! On 23 Jun 2015, at 00:11, Jesse Skrivseth voodood...@gmail.com wrote: The Message class has several field types that can be explicitly declared when adding fields to messages. It seems to support: Double Long String If I want to attach a field as a custom elastic type such

[graylog2] Upload logs to analyze in GrayLog

Hi! Is there any option where I can upload logs to analyze in GrayLog? I need to import logs from a CISCO ASA device that is not connected to the network, so I need to include this manually. Thanks and regards, By the way sorry for my bad english, -- You received this message because you

Re: [graylog2] Upload logs to analyze in GrayLog

Hi Allan, You can only upload logs to Graylog by sending them through a network interface, but you can do that from a different computer than the one generating the logs. I would place the log file you want to analyse in a computer that can access Graylog, then create a raw TCP input in

[graylog2] Confused by message filed truncation

Hi all, I'm sending my VMware vCenter server logs and Windows event logs into Graylog using nxlog-ce to send to GELF UDP inputs. I'm getting confused as to why the message field is truncated compared with the full_message. At this point I have not tried defining any fields in nxlog for these

[graylog2] Upgrade steps for deb based system 1.0.2 -- 1.1.3

Hello. I've got a Graylog system running (Ubuntu 14.04) 1.0.2. I'm going to be upgrading, and have been unable to find any specific instructions. Do I need to do anything other than install the updated deb packages? Thanks. -Pete -- You received this message because you are subscribed to the