opensource/graylog2-server
1
0
Fork 0
mirror of https://github.com/Graylog2/graylog2-server.git synced 2026-03-13 09:32:21 +08:00
Code Issues Packages Projects Releases Wiki Activity

Update documentation links (#11457)

Browse Source 
Co-authored-by: Kyle Knight <122591+kyleknighted@users.noreply.github.com>
This commit is contained in:
Bernd Ahlers
2021-10-12 23:13:18 +02:00
committed by GitHub
parent 63b5c5a66d
commit 21f0e81664
7 changed files with 58 additions and 63 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docs/cef/README.md
View File

@@ -28,7 +28,7 @@ Some systems will send CEF as part of a RFC compliant syslog message. In this ca
### Parsing raw CEF or CEF embedded in any other envelopes
If the envelope is not syslog or the CEF message is not in an envelope at all, you can use the [Graylog Processing Pipelines](http://docs.graylog.org/en/latest/pages/pipelines.html) and the `parse_cef` function this plugin provides:
If the envelope is not syslog or the CEF message is not in an envelope at all, you can use the [Graylog Processing Pipelines](https://docs.graylog.org/docs/processing-pipelines) and the `parse_cef` function this plugin provides:
1. Use a pipeline rule to parse out the CEF part of the message (for example, using regex) and then apply the `parse_cef()` function on that extracted string.
1. If desired, use a second pipeline step to rename the `cef_` prefixed message fields to something easier to use and easier to remember.