Skip to content

Instantly share code, notes, and snippets.

@damianknopp

damianknopp/simple-logstash-elk-grok.txt

Created May 7, 2020 17:01
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save damianknopp/3bcd8d35b994a7148120f8b314414858 to your computer and use it in GitHub Desktop.
Save damianknopp/3bcd8d35b994a7148120f8b314414858 to your computer and use it in GitHub Desktop.
Download ZIP
simple-logstash-elk-grok.txt
Raw
simple-logstash-elk-grok.txt
54.xx.xxx.xxx - - [07/May/2020:13:18:12 +0000] "GET / HTTP/1.1" 200 9877 "-" "kube-probe/1.16"
%{IP:ip} \- \- \[%{NUMBER:day}/%{DATA:month}/%{NUMBER:year}:%{DATA:time} +%{NUMBER:offset}\] "%{WORD:method} %{URIPATH:path} %{DATA:protocol}" %{NUMBER:status} %{NUMBER:size} %{QS:dash3} %{QS:browser}
{
"offset": "+0000",
"method": "GET",
"year": "2020",
"ip": "54.xx.xxx.xxx",
"dash3": "\"-\"",
"path": "/",
"protocol": "HTTP/1.1",
"month": "May",
"size": "9877",
"browser": "\"kube-probe/1.16\"",
"time": "13:18:12",
"day": "07",
"status": "200"
}
%{GREEDYDATA:rest}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment