gistfile1.txt

     grok {
           match => [ "message", "%{SYSLOGTIMESTAMP} %{DATA:hostname} %{DATA:logtype}: %{DATA:severitycode}, %{GREEDYDATA} #%{GREEDYDATA:sessID}/]  %{DATA:severity} -- : %{DATA:status} %{NUMBER:statuscode} OK in %{NUMBER:responsetime}ms %{DATA}: %{NUMBER:viewstime}ms %{DATA}: %{NUMBER:solrtime}ms"]
	   add_field => {
		responsetime => %responsetime
		}
	   break_on_match => false
      }