OK, I have Graylog installed on a standalone CentOS 7 machine and currently it is ingesting from a number of servers, but just the /var/log/messages file. I really want to be able to gather up all of our various Apache log files here into Graylog as well as IIS (especially to find patterns of IPs). I’m still not real sure how to do this OR how to provide data to my supervisor in a way that is easy to understand using Graylog. Any guidance and/or suggestions are much appreciated. Just don’t want to have spent my time on getting this set up and then not be able to use it. Thank you.
(Oh, and related to this - we have another service [proxy service] that records a lot of data in the logs; how can I manipulate that within Graylog? I would really, REALLY love to do that!!!)