-
Notifications
You must be signed in to change notification settings - Fork 3
Usage
Filip Halas edited this page Apr 3, 2014
·
11 revisions
Usage: gomatch (OPTIONAL: [FLAG] [ARGUMENT])
Options:
-a, --a Filepath for AMQP config file. (default none)
-i, --i Data input. (default STDIN)
-n, --u Unmatched data output. (default no_match.log)
-o, --o Matched data output. (default STDOUT)
-p, --p Patterns input. (default ./Patterns)
-s, --s Reading from socket. (default none, overrides -i)
-t, --t Tokens input. (default ./Tokens)
Pass a config file with flag -a containing the following configuration parameters (see ./RabbitMQ):
amqp.receive.uri =
amqp.receive.format =
amqp.receive.queue =
amqp.receive.exchange =
amqp.matched.send.uri =
amqp.matched.send.queue =
The amqp.receive.format parameter can be either set to json or plain, if it is set to json, gomatch will be matching the following lines:
{"@stringAtt1":"value1","@stringAtt2":"value2",...,"@gomatch":LOG_TO_MATCH}
if it is set to plain, gomatch will be matching raw log data.