Issues
- 1
HTTPD24_ERRORLOG fails if module not present
#259 opened by jordi-domingo - 0
HTTPD24_ERRORLOG fails in if enabling loglevel between trace1 and trace8, due to number in loglevel
#325 opened by arberg - 1
- 2
- 0
HTTPDUSER pattern does not match for empty user for standard apache log, generates grokparsefailure
#323 opened by rsommer - 1
CISCOFW106006_106007_106010 not matching
#322 opened by anubisg1 - 2
Should the SPACE grok pattern match zero or more?
#245 opened by zestysoft - 1
- 3
grok pattern IPTABLES does not always match
#316 opened by jdelker - 0
- 1
- 3
- 2
- 1
grok patterns for firewall checkpoint helpme!
#309 opened by dcantos1 - 0
Scope ID in IPv6
#308 opened by Fondaz - 4
HTTPD_COMBINEDLOG pattern conflicts with ECS v1.0
#243 opened by C-Duv - 0
Logstash plugins create events breaking ECS
#248 opened by farrp - 0
Field agent collides with filebeat agent field in grok COMBINEDAPACHELOG pattern
#258 opened by d3vnick - 0
Implement ECS-Compatibility Mode
#278 opened by kares - 0
- 2
Add "short" loglevels for Ceph logs
#187 opened by rlueckl - 1
Pattern for parsing golang logs?
#188 opened by mcandre - 1
Add glassfish LOGLEVELS
#239 opened by kallisti5 - 2
HTTPD (Apache) combined grok pattern failing due to none interger response code
#214 opened by tomrade - 7
Incorrect pattern for AWS CLOUDFRONT_ACCESS_LOG
#232 opened by jpleger - 1
- 0
- 1
- 1
why can I not use the grok to define the nginx upstream_addr (HOSTPORT (%{IPV4}:%{POSINT}[, ]{0,2})+)
#219 opened by auqf - 1
Grok Filter Application
#252 opened by omarals95 - 1
Support empty response status in COMBINEDAPACHELOG
#194 opened by jarro2783 - 0
- 1
- 2
JAVACLASS not matching java class
#238 opened by kallisti5 - 0
Add support for truncated bytes in MAC addresses as seen with arpwatch and elsewhere
#236 opened by dspruell - 1
linux-syslog error in %{SYSLOG5424LINE}
#183 opened by flysen - 1
- 3
- 1
Some Cisco ASA logs resolve IP addresses to hosts
#224 opened by tomrade - 1
- 0
IPv6 in Uris
#222 opened by gellweiler - 1
DATESTAMPS
#220 opened by gellweiler - 2
Line 72 in grok-patterns is not optimized
#221 opened by bcharboneauiherb - 3
Apache error log with referer
#213 opened by jbelien - 2
Unnecessary Dependency?
#210 opened by abates - 0
ANTLAB INNGATE SYSLOG filtering with logstash
#207 opened by malikgenius - 0
Gitolite syslog parsing
#198 opened by danielpops - 1
Postfix queue ID Parsed in program Field
#193 opened by corey-hammerton - 2
logstash pattern for logstash log file?
#186 opened by mnikhil-git - 0