AWS Application Load Balancer Grok Pattern

alb_grok_pattern.txt

%{NOTSPACE:protocol}%{SPACE}%{TIMESTAMP_ISO8601:date}%{SPACE}%{NOTSPACE:loadbalancer_id}%{SPACE}%{IP:client_ip}:%{NOTSPACE:client_port}%{SPACE}(-|%{IP:target_ip}:%{NOTSPACE:target_port})%{SPACE}%{NUMBER:request_processing_time}%{SPACE}%{NUMBER:target_processing_time}%{SPACE}%{NUMBER:response_processing_time}%{SPACE}%{NOTSPACE:elb_status_code}%{SPACE}(-|%{NOTSPACE:target_status_code})%{SPACE}%{NUMBER:received_bytes}%{SPACE}%{NUMBER:sent_bytes}%{SPACE}\"%{DATA:request}\"%{SPACE}\"%{DATA:user_agent}\"%{SPACE}(-|%{NOTSPACE:ssl_cipher})%{SPACE}(-|%{NOTSPACE:ssl_protocol})%{SPACE}%{NOTSPACE:target_group_arn}%{SPACE}\"%{DATA:trace_id}\"%{SPACE}\"(-|%{DATA:domain_name})\"%{SPACE}\"(-|%{DATA:chosen_cert_arn})\"%{SPACE}(-|%{NOTSPACE:matched_rule_priority})%{SPACE}%{TIMESTAMP_ISO8601:request_creation_time}%{SPACE}\"(-|%{DATA:actions_executed})\"%{SPACE}\"(-|%{DATA:redirect_url})\"%{SPACE}\"(-|%{DATA:error_reason})\"%{SPACE}\"(-|%{DATA:target_ip_lists})\"%{SPACE}\"%{NOTSPACE:target_status_code_list}\"