Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.

convert syslog to other format with nifi?

Labels:
moj_72
Explorer

Created ‎09-12-2018 09:53 AM

Hi

I want to convert my syslog format file to other format like csv, cef or json with NiFi.

How can I do this?

thanks you.

1,164 Views
0 Kudos
2 REPLIES 2

moj_72
Explorer

Created ‎09-12-2018 10:32 AM

@Matt Clarke

would you help me?

1,012 Views
0 Kudos

MattWho
Master Guru

Created ‎09-12-2018 12:08 PM

@mojgan ghasemi

-

My suggestion is you look at using the "ConvertRecord" processor for this purpose.

As your "Record Reader" you should be able to use the GrokReader to parse your syslog format.

As your "Record Writer" you have both CSV and JSON record writers.

I am not familiar with the "cef" file format and don't know of any processors or record writers that can convert to to that format. That one may requires some custom coding on your part.

-

Thank you,

Matt

-

If you found this answer addressed your question, please take a moment to login in and click the "ACCEPT" link.

1,012 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
What's New @ Cloudera
Cloudera Machine Learning launches "Add Data" feature to simplify data ingestion
What's New @ Cloudera
Simplify Data Access with Custom Connection Support in CML
View More Announcements