search

cjslack / grok-debugger

MIT License
129 stars 30 forks source link

Unable match pattern SYSLOG5424PRI #11

Open ruey-cheng opened 1 year ago

ruey-cheng commented 1 year ago

Grok Pattern %{SYSLOG5424PRI} Samples <161> image

But it works in kibana / Dev Tools / Grok Debugger image

Thanks for your help!

ara-mark commented 2 months ago

Hi! i've encountered a similar issue. it may be related to grok-debugger not being able to handle nested fields [log][syslog][priority]. The issue is similar to https://github.com/cjslack/grok-debugger/issues/8 see: image