sowamazing/gist:54e34cf148230362d52e

## gistfile1.txt
source s_apache {
    file("/var/log/apache2/spike2-access.log" flags(no-parse));
};

parser p_apache {
    csv-parser(columns("APACHE.CLIENT_IP", "APACHE.IDENT_NAME", "APACHE.USER_NAME",
                    "APACHE.TIMESTAMP", "APACHE.REQUEST_URL", "APACHE.REQUEST_STATUS",
                    "APACHE.CONTENT_LENGTH", "APACHE.REFERER", "APACHE.USER_AGENT",
                    "APACHE.PROCESS_TIME", "APACHE.SERVER_NAME")
                flags(escape-double-char,strip-whitespace)
    delimiters(" ")
    quote-pairs('""[]')
    );
};

template LogglyFormat { template("<${PRI}>1 ${ISODATE} ${HOST} ${PROGRAM} ${PID} ${MSGID} [abcd1234-aaaa-bbbb-1234-1234abcd1234@41058] $(format_json --key APACHE.*)\n");};

destination d_loggly {
    tcp("logs-01.loggly.com" port(6514)
    tls(peer-verify(required-untrusted) ca_dir('/etc/syslog-ng/keys/'))
    template(LogglyFormat));
};
log { source(s_apache); parser(p_apache); destination(d_loggly); };
	source s_apache {
	file("/var/log/apache2/spike2-access.log" flags(no-parse));
	};

	parser p_apache {
	csv-parser(columns("APACHE.CLIENT_IP", "APACHE.IDENT_NAME", "APACHE.USER_NAME",
	"APACHE.TIMESTAMP", "APACHE.REQUEST_URL", "APACHE.REQUEST_STATUS",
	"APACHE.CONTENT_LENGTH", "APACHE.REFERER", "APACHE.USER_AGENT",
	"APACHE.PROCESS_TIME", "APACHE.SERVER_NAME")
	flags(escape-double-char,strip-whitespace)
	delimiters(" ")
	quote-pairs('""[]')
	);
	};

	template LogglyFormat { template("<${PRI}>1 ${ISODATE} ${HOST} ${PROGRAM} ${PID} ${MSGID} [abcd1234-aaaa-bbbb-1234-1234abcd1234@41058] $(format_json --key APACHE.*)\n");};

	destination d_loggly {
	tcp("logs-01.loggly.com" port(6514)
	tls(peer-verify(required-untrusted) ca_dir('/etc/syslog-ng/keys/'))
	template(LogglyFormat));
	};
	log { source(s_apache); parser(p_apache); destination(d_loggly); };