UNPKG

nsyslog

Version:

Modular new generation log agent. Reads, transform, aggregate, correlate and send logs from sources to destinations

github.com/solzimer/nsyslog

solzimer/nsyslog

105 lines (104 loc) 2.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
{ "start": [{ "description": "Timestamp", "name": "token.timestamp", "regex": "^(\\d+\\-\\d+\\-\\d+ \\d+:\\d+:\\d+(\\.\\d+)?(Z)?)" }, { "description": "Timestamp ISO", "name": "token.timestamp", "regex": "^(\\d+\\-\\d+\\-\\d+T\\d+:\\d+:\\d+\\.\\d+(\\+\\d+)?(Z)?)" }, { "description": "Syslog Timestamp", "name": "token.timestamp", "regex": "^((Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec) \\d{1,2} \\d{2}\\:\\d{2}\\:\\d{2})", "next": "tags" }, { "description": "Thread", "name": "keyword.language", "regex": "\\[[^\\]]+\\]" }, { "description": "IP Address", "name": "keyword.operator", "regex": "\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}" }, { "description": "Port / Line number", "name": "constant.comment", "regex": "\\:(\\d+)" }, { "description": "time", "name": "keyword.comment", "regex": "\\d+ms" }, { "description": "hex number", "name": "constant.numeric", "regex": "(0x)[0-9a-fA-F]+" }, { "description": "number", "name": "constant.numeric", "regex": "(0x)?\\d+" }, { "description": "HTTP method", "name": "keyword.language", "regex": "GET |POST |PUT |DELETE " }, { "description": "Property", "name": "param.key", "regex": "([^= ]+)=", "next": "value" }, { "description": "Path", "name": "token.path", "regex": "(/[^ /,:>=\\}\"]+)+" }, { "description": "Log ERROR", "name": "level.error", "regex": " (ERROR|error|FATAL|fatal|CRIT|crit)[ :]" }, { "description": "Log WARN", "name": "level.warn", "regex": " (WARNING|WARN|warning|warn)[ :]" }, { "description": "Log DEBUG", "name": "level.debug", "regex": " (DEBUG|debug|TRACE|trace)[ :]" }, { "description": "Log INFO", "name": "level.info", "regex": " (INFO|info)[ :]" } ], "value": [{ "description": "Property", "name": "param.value", "regex": "[^ ,]+", "next": "start" }], "tags": [{ "description": "Syslog tags", "name": "app.module", "regex": "[^ :]+", "next": "tags" }, { "description": "Syslog tags", "name": "keyword.operator", "regex": ":", "next": "start" } ] }