regex xm_multiline

Post a question
0
responses

Splitting multiline log into separate fields

Hi team,

I'm sure this should be easy, but I'm not having much luck finding the answer elsewhere, can any of you help me?

So I have (McAfee Firewall) log entries that look like this:

Time: 10/23/2020 08:09:36 AM

Event: Traffic

IP Address: 172.19.0.113

Description: SNMP SERVICE

Path: C:\Windows\System32\snmp.exe

AskedOctober 23, 2020 - 9:20am
4
responses

How to write a Regular expressions for Traditional Chinese characters

Hi,

I am trying to collect Windows DNS debug logs with Nxlog xm_multiline. I reference below link:
Parsing Detailed DNS Logs With Regular Expressions (https://nxlog.co/documentation/nxlog-user-guide/windows-dns-server.html#parsing-detailed)

But, Windows DNS Debug Logs includes Traditional Chinese characters, it won't let me combine multiline into one log,
What is correct "HEADER_REGEX" that should I use?

AskedMarch 6, 2020 - 6:59am