Add your screenshots of your parsing templates here, and tell us what you learned! This is an extra credit activity.
Just made my first parsing template! It was kinda difficult to understand at first but the official LogDNA Youtube video helped me out
As a test, made some parser that takes some basic data about each login: the uid, the ip address and the result. The parser:
I wasn’t quite sure what to query, but I found the API lines return during one of my tests. They appear to follow a set format where the first word relates to the debug level, so I was parsing that out and setting in as the typeDescription
here’s my attempt as a parser. It seems like you can pretty much parse out and capture anything you might possibly want.
I followed the tutorial from logDNA youtube video. It is about DHCP that has three operators, to extract the ‘dhclient’ value, extracts the ‘xid’ value and the ‘port number’ respectively.
Then, proceed with validate the sample line with its output.Lastly, press ‘Activate’ button.
The sibling operator from the left to right( in sequence) as follows:
Test and validate the sample outputs: