Re: [exim] Processing Exim log files with Logstash

Página superior
Eliminar este mensaje
Responder a este mensaje
Autor: Graeme Fowler
Fecha:  
A: exim-users
Asunto: Re: [exim] Processing Exim log files with Logstash
On 10 May 2014, at 13:17, Sven Hartge <sven@???> wrote:
> This is great! I am just right now setting up logstash to aggregate and
> visualise system logs and was struggling with Exims log format for some
> time now, trying to use the multiline matcher which does not work
> because of the nature of Exims logs, as you explained.


Indeed, I struggled for a day or so with that before taking off down another road altogether.

> So thank you for your work, this will greatly reduce my headaches in
> conjuring up the correct grok expressions to use.


That was the fun part :)

> But: Could you be so kind to export and share your dashboard setup? Or did I
> miss this information somewhere on your web page?


Apologies; I added it to the final post but here it is as a direct link:

https://gist.github.com/greem/3c757ebfb31f48886d98#file-dash-by-recipients-json

Graeme