[syslog-ng] Howto configure grep to parse multiple mail recipients
C. L. Martinez
carlopmart at gmail.com
Wed May 30 11:16:00 CEST 2012
On Sun, May 27, 2012 at 5:50 PM, C. L. Martinez <carlopmart at gmail.com> wrote:
>
>
> On Sunday, May 27, 2012, Balazs Scheidler <bazsi77 at gmail.com> wrote:
>> On Fri, 2012-05-25 at 08:43 +0200, C. L. Martinez wrote:
>>> On Thu, May 24, 2012 at 2:32 PM, C. L. Martinez <carlopmart at gmail.com>
>>> wrote:
>>> > Hi all,
>>> >
>>> > I am trying to parse some Ironport logs to cacth mutliple destination
>>> > recipients using grep in value option:
>>> >
>>> > recipient: $(grep ("${to_address}" != "") ${to_address})
>>> >
>>> > but it doesn't works ...
>>> >
>>> > What am I doing wrong?? I am using syslog-ng 3.3.5 under CentOS6.
>>> >
>>
>> $(grep) is a template function, that only makes sense to be used in a
>> patterndb correllation rule.
>>
>
> That's exactly what i need. I need to use inside a pattern to correlate mail
> logs.
>
>
>> Are you using it in that context? Otherwise you'd proably be looking for
>> a simple filter.
>
> A filter? I don't see how to do this inside a pattern
>
>
>>
Please, any help?
More information about the syslog-ng
mailing list