Hi team,
Can someone please help me with parsing the below tomcat log (contains multiple lines) ?
**tomcat log snippet: **
Hi all :)
(I'm new to nxlog)
I'm currently facing issues handling logs which are being sent to nxlog via syslog line by line. Basically after looking at documentation i found out that possibly xm_multiline can help me out.
Raw log example:
2020.05.20 15:22:37:481 CEST | Info | HTTP
Body text part 1
2020.05.20 15:22:37:502 CEST | Info | HTTP
Body text part 2
Hi guys!
I really someone can help because I think I have tested all the things I could think of to make it work...
Ok, so we have those logs:
Hello,
I would like to obtain information in alert.log multiple lines for an event but without success. Below, my configuration :
<Extension multiline>
Module xm_multiline
HeaderLine /^\w\w\w\s\w\w\w\s\d\d\s\d\d:\d\d:\d\d\s\d\d\d\d/
</Extension>
<Extension syslog>
Module xm_syslog
</Extension>
I am trying to use the multlog module in order to start ingesting a custom log:
I have the following regex: \^(\d{2}|\d).(\d{2}|\d).(\d{4})\s(\d\d|\d):(\d\d|\d):(\d\d|\d)\s(AM|PM).\[(.*)\](.*) This works in a regex test; however I cannot get it to work with the log file that looks something like this