Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
input {
stdin { }
file {
type => "applogs"
# Wildcards work, here :)
path => [ "/home/alee/workspaces/java-workspaces/elasticsearch-example/graph-presenter/logs/*.log" ]
}
}
filter{
grok{
match => ["message", "%{WORD:level} %{SYSLOG5424SD:time} %{JAVACLASS:class}: _data_%{GREEDYDATA:json}"]
}
json {
source => "json"
}
}
output { stdout { codec => rubydebug } }
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment