<source>
    @type tail
    path /opt/hue.log
    tag log.unprocessed
    read_from_head true

    <parse>
        @type multiline
        format_firstline /\[\d+\/\w+\/\d{4} \d+:\d+:\d+([^]]+)\]\s+\w+\s+\w+/
        format1 /\[(?<time>\d+\/\w+\/\d{4} \d+:\d+:\d+([^]]+))\]\s+(?<component>\w+)\s+(?<log_lvl>\w+) (?<message>.*)/

        time_key time
        time_format %d/%b/%Y %H:%M:%S %z
        #keep_time_key true
    </parse>
</source>

<source>
    @type tail
    path /opt/test
    tag log.unprocessed
    read_from_head true

    <parse>
        @type multiline
        format_firstline /\d{4}-\d{1,2}-\d{1,2} \d{1,2}:\d{1,2}:\d{1,2},\d{3}/
        format1 /(?<time>\d{4}-\d{1,2}-\d{1,2} \d{1,2}:\d{1,2}:\d{1,2},\d{3}) (?<message>(.|\s)*)/

        time_key time
        time_format %Y-%m-%d %H:%M:%S,%L
        keep_time_key true
    </parse>
</source>