frankwese

## converter.mjs
#!/usr/local/bin/node
# remove everything except the routes from your froc file
# remove leading whitespace and -
import { open, writeFile } from 'node:fs/promises';

const source = await open('./offerpage.txt');
const paths = [];
const prefix = "/offerpage-aws-preview"
const pathTemplate = {
    "pattern": "/l7r-test/*",

## dns_test-stack.ts
import { Stack, StackProps } from 'aws-cdk-lib';
import { Construct } from 'constructs';
// import * as sqs from 'aws-cdk-lib/aws-sqs';
import * as r53 from 'aws-cdk-lib/aws-route53';

export class DnsTestStack extends Stack {
  constructor(scope: Construct, id: string, props?: StackProps) {
    super(scope, id, props);
    const theZone = r53.HostedZone.fromLookup(this, 'AE-ZONE', {
                                      domainName: 'everestate.ae',

## gist:68610e981e6b17b5b311fcbdb64180c2
parse '* - - [*] "* * *" * * "*" "*" "*"' as host, dateTimeString, httpVerb, url, protocol, statusCode, bytes, referrer, agent, remoteAdress
| filter ispresent(url)
| filter agent not like /ELB-HealthChecker/


#| filter statusCode = 499
| sort @ingestionTime desc

## parse_alb_logs.txt
fields @message
| parse @message /(?<type>[^ ]*) (?<time>[^ ]*) (?<elb>[^ ]*) (?<client_ip>[^ ]*):(?<client_port>[0-9]*) (?<target_ip>[^ ]*)[:-](?<target_port>[0-9]*) (?<request_processing_time>[-.0-9]*) (?<target_processing_time>[-.0-9]*) (?<response_processing_time>[-.0-9]*) (?<elb_status_code>|[-0-9]*) (?<target_status_code>-|[-0-9]*) (?<received_bytes>[-0-9]*) (?<sent_bytes>[-0-9]*) \"(?<request_verb>[^ ]*) (?<request_url>[^ ]*) (?<request_proto>- |[^ ]*)\" \"(?<user_agent>[^\"]*)\" (?<ssl_cipher>[A-Z0-9-]+) (?<ssl_protocol>[A-Za-z0-9.-]*) (?<target_group_arn>[^ ]*) \"(?<trace_id>[^\"]*)\" \"(?<domain_name>[^\"]*)\" \"(?<chosen_cert_arn>[^\"]*)\" (?<matched_rule_priority>[-.0-9]*) (?<request_creation_time>[^ ]*) \"(?<actions_executed>[^\"]*)\" \"(?<redirect_url>[^\"]*)\"(?<lambda_error_reason>$| \"[^ ]*\")(?<rest>.*)/
| display client_ip, request_url
	#!/usr/local/bin/node
	# remove everything except the routes from your froc file
	# remove leading whitespace and -
	import { open, writeFile } from 'node:fs/promises';

	const source = await open('./offerpage.txt');
	const paths = [];
	const prefix = "/offerpage-aws-preview"
	const pathTemplate = {
	"pattern": "/l7r-test/*",
	import { Stack, StackProps } from 'aws-cdk-lib';
	import { Construct } from 'constructs';
	// import * as sqs from 'aws-cdk-lib/aws-sqs';
	import * as r53 from 'aws-cdk-lib/aws-route53';

	export class DnsTestStack extends Stack {
	constructor(scope: Construct, id: string, props?: StackProps) {
	super(scope, id, props);
	const theZone = r53.HostedZone.fromLookup(this, 'AE-ZONE', {
	domainName: 'everestate.ae',
	parse '* - - [] " * " * "" "" "*"' as host, dateTimeString, httpVerb, url, protocol, statusCode, bytes, referrer, agent, remoteAdress
	\| filter ispresent(url)
	\| filter agent not like /ELB-HealthChecker/


	#\| filter statusCode = 499
	\| sort @ingestionTime desc
	fields @message
	\| parse @message /(?<type>[^ ]) (?<time>[^ ]) (?<elb>[^ ]) (?<client_ip>[^ ]):(?<client_port>[0-9]) (?<target_ip>[^ ])[:-](?<target_port>[0-9]) (?<request_processing_time>[-.0-9]) (?<target_processing_time>[-.0-9]) (?<response_processing_time>[-.0-9]) (?<elb_status_code>\|[-0-9]) (?<target_status_code>-\|[-0-9]) (?<received_bytes>[-0-9]) (?<sent_bytes>[-0-9]) \"(?<request_verb>[^ ]) (?<request_url>[^ ]) (?<request_proto>- \|[^ ])\" \"(?<user_agent>[^\"])\" (?<ssl_cipher>[A-Z0-9-]+) (?<ssl_protocol>[A-Za-z0-9.-]) (?<target_group_arn>[^ ]) \"(?<trace_id>[^\"])\" \"(?<domain_name>[^\"])\" \"(?<chosen_cert_arn>[^\"])\" (?<matched_rule_priority>[-.0-9]) (?<request_creation_time>[^ ]) \"(?<actions_executed>[^\"])\" \"(?<redirect_url>[^\"])\"(?<lambda_error_reason>$\| \"[^ ]\")(?<rest>.*)/
	\| display client_ip, request_url