Skip to content

Instantly share code, notes, and snippets.

@mensoh

mensoh/logstash.conf Secret

Created October 17, 2018 09:07
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save mensoh/932968e45395420a0e28aa1b7a13c0e0 to your computer and use it in GitHub Desktop.
Save mensoh/932968e45395420a0e28aa1b7a13c0e0 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
logstash.conf
input {
file {
path => "/home/bitnami/logs/config-access.log.*"
start_position => "beginning"
}
}
filter {
grok {
match => [
"message" , "%{COMBINEDAPACHELOG}+%{GREEDYDATA:extra_fields}",
"message" , "%{COMMONAPACHELOG}+%{GREEDYDATA:extra_fields}"
]
overwrite => [ "message" ]
}
mutate {
convert => ["response", "integer"]
convert => ["bytes", "integer"]
convert => ["responsetime", "float"]
}
geoip {
source => "clientip"
target => "geoip"
add_tag => [ "apache-geoip" ]
}
date {
match => [ "timestamp" , "dd/MMM/YYYY:HH:mm:ss Z" ]
remove_field => [ "timestamp" ]
}
useragent {
source => "agent"
}
}
output
{
stdout { codec => rubydebug }
elasticsearch
{
hosts => ["127.0.0.1:9200"]
document_id => "%{logstash_checksum}"
index => "logstash-%{+YYYY.MM.dd}"
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment