Search found 4 matches

by tgco
Thu Feb 02, 2017 6:13 am
Forum: Using LogMX
Topic: Simple Parser Rules - Wildcards in text markers?
Replies: 3
Views: 13620

Re: Simple Parser Rules - Wildcards in text markers?

Xavier, Thank you so much for that offer, I dont mean to tie up your time. For discussion's sake the log segments are kerberos KDC log segments, the significant lines are the AS_REP and TGS_REP lines (authentication service request and reply and ticket granting service request and reply). Jan 07 09:...
by tgco
Tue Jan 31, 2017 7:56 am
Forum: Using LogMX
Topic: Simple Parser Rules - Wildcards in text markers?
Replies: 3
Views: 13620

Simple Parser Rules - Wildcards in text markers?

Is there a wildcard that can be put into the text entry for a simple parser structure? For example if you had a situation where a numeric value that was variable but not significant was in the middle of a text string you wanted to delimit with... For example in a MIT kerberos KDC log file there is t...
by tgco
Tue Jan 31, 2017 5:54 am
Forum: Using LogMX
Topic: Basic Concepts - Thread, emitter, and level
Replies: 2
Views: 12323

Basic Concepts - Thread, emitter, and level

I'm getting started with the LogMX and one thing I'm not finding is discussion clarifying the concepts of Thread, Emitter, and Level in the Simple Parser Editor. Im taking a crack at trying to parse kerberos KDC logging (MIT flavor) and need to set up custom fields that are evident, but aligning fie...