Sequence: A High Performance Sequential Semantic Log Parser at 175,000 MPS

Another alternative to regular expression based message parsing that has native support within syslog-ng: patterndb (<a href="http://www.balabit.com/network-security/syslog-ng/opensource-logging-system/features/pattern-db" rel="nofollow">http:&#x2F;&#x2F;www.balabit.com&#x2F;network-security&#x2F;syslog-ng&#x2F;opensource...</a>)<p>Very fast and a bit complex to setup, but well documented and well tooled. Mature. It could do with some more community love, tbh.

As this appears to have been submitted by the author: the site is very difficult to read on an iPad. The font size toggles between small and large every few seconds. Easily reproduced in both Chrome and Safari.

What&#x27;s the key differentiator between this and logstash? Obviously logstash has this beat on the number of patterns simply because it&#x27;s been around for longer. If this is truly different (superior and&#x2F;or faster) than logstash&#x27;s grok parser, I wonder if this could be implemented as a sort of meta-parser in logstash, possibly useful in cases where someone would have instead resorted to building a grok definition.