oguzhancoskun/graylog-apache.json

## graylog-apache.json
{
  "extractors": [
    {
      "condition_type": "none",
      "condition_value": "",
      "converters": [
        {
          "config": {},
          "type": "numeric"
        },
        {
          "config": {
            "date_format": "DDD MMM dd hh:mm:ss yyyy"
          },
          "type": "date"
        }
      ],
      "cursor_strategy": "copy",
      "extractor_config": {
        "regex_value": "([a-zA-Z]{1,3}\\s[a-zA-Z]{1,3}\\s([0-9])[0-9]\\s[0-9]{2}:[0-9]{2}:[0-9]{2}\\s[0-9]{4})"
      },
      "extractor_type": "regex",
      "order": 0,
      "source_field": "message",
      "target_field": "httpd_date",
      "title": "httpd_date"
    },
    {
      "condition_type": "none",
      "condition_value": "",
      "converters": [],
      "cursor_strategy": "copy",
      "extractor_config": {
        "regex_value": "\\[.*\\]\\s(.*)"
      },
      "extractor_type": "regex",
      "order": 0,
      "source_field": "message",
      "target_field": "httpd_message",
      "title": "httpd_message"
    }
  ],
  "version": "0.20.2"
}
	{
	"extractors": [
	{
	"condition_type": "none",
	"condition_value": "",
	"converters": [
	{
	"config": {},
	"type": "numeric"
	},
	{
	"config": {
	"date_format": "DDD MMM dd hh:mm:ss yyyy"
	},
	"type": "date"
	}
	],
	"cursor_strategy": "copy",
	"extractor_config": {
	"regex_value": "([a-zA-Z]{1,3}\\s[a-zA-Z]{1,3}\\s([0-9])[0-9]\\s[0-9]{2}:[0-9]{2}:[0-9]{2}\\s[0-9]{4})"
	},
	"extractor_type": "regex",
	"order": 0,
	"source_field": "message",
	"target_field": "httpd_date",
	"title": "httpd_date"
	},
	{
	"condition_type": "none",
	"condition_value": "",
	"converters": [],
	"cursor_strategy": "copy",
	"extractor_config": {
	"regex_value": "\\[.\\]\\s(.)"
	},
	"extractor_type": "regex",
	"order": 0,
	"source_field": "message",
	"target_field": "httpd_message",
	"title": "httpd_message"
	}
	],
	"version": "0.20.2"
	}