logstash解析系统的messages日志
生活随笔
收集整理的這篇文章主要介紹了
logstash解析系统的messages日志
小編覺得挺不錯的,現在分享給大家,幫大家做個參考.
logstash解析系統日志的寫法,output中的stdout為調試,生產可以移除
input {redis {host => "192.168.1.181"port => 6379db => "0"data_type => "list"key => "815"} } filter {grok {match => {"message" => "%{SYSLOGLINE}"}}mutate {remove_field => ["prospector","logsource","beat","[message][0]","offset","@version","input"]}date {match => ["timestamp","MMM dd HH:mm:ss"]}mutate {remove_field => ["timestamp"]} } output {elasticsearch {hosts => ["10.78.1.184:9200","10.78.1.185:9200","10.78.1.188:9200"]index => "message-%{+YYYY.MM.dd}"}stdout { codec => rubydebug } }轉載于:https://blog.51cto.com/liuzhengwei521/2151159
總結
以上是生活随笔為你收集整理的logstash解析系统的messages日志的全部內容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: char string 区别
- 下一篇: Laravel5.6 实现后台管理登录(