parsing message in rsyslog configuration

Log in to Your Red Hat Account

Your Red Hat account gives you access to your profile, preferences, and services, depending on your status.

If you are a new customer, register now for access to product evaluations and purchasing capabilities.

Need access to an account?

If your company has an existing Red Hat account, your organization administrator can grant you access.

Red Hat Account Number:

For your security, if you’re on a public computer and have finished using your Red Hat services, please be sure to log out.

Here are my requirements:

Send the vsftpd logs to syslog, and parse and format the data as the following:

I have tried to use a script to parse the log but I would like to know if there more efficient way to handle this. I am a newbie to rsyslog.

Currently our rsyslog version is 5.8 in RHEL 6.

My question is:

Started 2016-02-13T00:40:05+00:00 by

Kandarp Desai

Newbie 5 points

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.

Here are the common uses of Markdown.

Code blocks

~~~
Code surrounded in tildes is easier to read
~~~

Links/URLs

[Red Hat Customer Portal](https://access.redhat.com)