Here is the default nxlogs looks like, but I would need the logs as below. Do you know what needs to be done?
2021-05-07 19:30:15 INFO nxlog-4.2.4216 started
2021-05-07 19:30:15 ERROR couldn't bind tcp socket to 0.0.0.0:514;Address already in use
2021-05-07 19:30:19 INFO successfully connected to agent manager at nxlogmgr.amgen.com:4041 in SSL mode
Hi All,
I'm currently trying to ingest some XML files into our SIEM platform (outputting to a local file at the moment for testing), and am having some issues reading files from a large directory.
The application we're ingesting log files from creates a folder structure and a single XML file per log entry.
Example path: "F:\PSP Logs\{4D2D2D9D-5379-4BDF-A331-0AF51BA015ED}\2021\05\06\13\File.xml"
My applications are running in windows server, one of the app log i wanted to parse to an another format, when i check nxlog has the feature.
I am new to nxlog, so thought to understand the working flow of nxlog. I didnt get any. I am getting the articles for windows event log parsing,
Can someone help me how to parse that or can share any article regarding.
Thanks in advance.
Regards,
Dhamodharan.
Hi
Am trying to send the file seperated with commas as below
"33,adasdad,null,03May2021,notification,SG,null,null"
In nxlog.conf --->
i wrote
<Extension log>
Module xm_multiline
HeaderLine /^<event>/
EndLine /^</\event>/
</Extension>
