I am currently trying to parse syslog messages coming from Windows OS and Redhat. Obviously this has been done before by a lot of people. I was wondering if there was a website or if someone could point me to a location where there are some well written groks for these OS syslog messages. I can write these groks myself, but you know how the saying goes:
"Work smarter not harder"
Thanks!
Perhaps the RedHat ones match what the Logstash documentation covers.
https://www.elastic.co/guide/en/logstash/current/config-examples.html
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.