From e8b7f433d62f0dfea5a2b20eed6a97f52342634a Mon Sep 17 00:00:00 2001 From: 9S <strrrn@gmail.com> Date: Fri, 22 Feb 2019 19:00:42 +0100 Subject: [PATCH] Add files via upload --- logstash/patterns/dns | 5 +++++ 1 file changed, 5 insertions(+) create mode 100644 logstash/patterns/dns diff --git a/logstash/patterns/dns b/logstash/patterns/dns new file mode 100644 index 0000000..f668c0c --- /dev/null +++ b/logstash/patterns/dns @@ -0,0 +1,5 @@ +HOSTNAMEPTR \b(?:[\._0-9A-Za-z][0-9A-Za-z-]{0,62})(?:\.(?:[\._0-9A-Za-z][0-9A-Za-z-]{0,62}))*(\.?|\b) +NODATA NODATA-[[:word:]]+ +SRV _+.+\S +FQDN \b(?:[\w-][\w-]{0,62})(?:\.(?:[\w-][\w-]{0,62}))*(\.?|\b) +DNSMASQPREFIX %{SYSLOGTIMESTAMP:date} %{SYSLOGPROG}: %{INT:logrow} %{IP:source_host}\/%{POSINT:source_port} \ No newline at end of file -- GitLab