Hi,
I have used mutline filter with other log formats and had no issues and i was able succesffuly parse the and get the output.
But, I have an XML log file that the application is genration and when ever an event happens it is appending the xml fileds to the end of the line and not adding it as part of a new line.
030error message 18141error message 18032error message 110
I need to parse it through logstash.
When i try to use the multiline format to read the log, i dont see it getting through and nothing is getting written as output.
codec => multiline {
pattern => "()"
negate => true
what => "previous"
}
Can you please help me how to overcome this issues through Logstash or filebeat.