Hi, I have read the other Community Messages regarding old logs and they don’t fit with my question below.
After successfully configuring FileBeat I am getting the messages into Graylog.
From my newbie understanding I now need to “parse” the data strings (PostGre SQL Message as an example) and place the values into meaningful fields.
I have searched in the documentation and I can’t find an example or the documentation as to how I do that parsing.
By parsing I mean, that in order to perform meaningful searches in the future. I think Graylog calls it “Extractors”.
Please help as I am looking to move to Graylog and need to import quite a large log archive which includes many log formats such as Palo Alto, Java, PostGre etc
Thank you
Peter