exec

1
answer

Sangeetha

Exec block with regular expression

Can you explain what exactly happens in this block?
I don't get a clear explanation of what "xEF\xBB\xBF" means in the below code and why it is having drop ()? .

<Exec>
if $raw_event =~ /^(\xEF\xBB\xBF)?(date-time,|#)/ drop();
else
{
csv_parser->parse_csv();
$EventTime = parsedate(${date-time});
}
</Exec>

nxlog,
exec,
regular expressions,

AskedApril 10, 2019 - 9:24pm

1
answer

mark

how to get values extracted using regex?

Hello,

I'm quite new to nxlog, so forgive me if my question is trivial but I'm having hard time to get the values I extract from my logs using exec and a regex. I have a very large stash of old windows logs in text file (in multiline format), what I want to do is use nxlog to load them in graylog, but I want to format the log in a different way.

variables,
regex,
exec,

AskedAugust 31, 2015 - 4:17am

You are here

Exec block with regular expression

how to get values extracted using regex?