Skip to content

Instantly share code, notes, and snippets.

@rudibroekhuizen

rudibroekhuizen/openstack.grok

Last active December 7, 2015 09:06
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save rudibroekhuizen/1341f4e9fe91a45b0217 to your computer and use it in GitHub Desktop.
Save rudibroekhuizen/1341f4e9fe91a45b0217 to your computer and use it in GitHub Desktop.
Download ZIP
Logstash GROK patterns for OpenStack syslogs
Raw
openstack.grok
# Logstash GROK patterns for OpenStack syslogs
DNSMASQ_DHCP %{WORD:dhcp_action}%{TAP_DEVICE}%{SPACE}%{IPV4:dhcp_client_ip}%{SPACE}%{COMMONMAC:dhcp_client_mac}
TAP_DEVICE (\(%{GREEDYDATA:tap_device})\)
OPENSTACK_PROGRAM (^fuel$|^horizon_access$|^nova-api$|^neutron-server$|^cinder-api$|^heat-engine$|^nailgun-agent$|^mcollective$|^glance-api$|^nova-compute$|^heat-api$|^heat-api-cfn$|^dnsmasq-dhcp$|^ocf-ns_haproxy$|^murano-api$|^haproxy$|^ceph-osd$|^ceph-mon$)
OPENSTACK_USER [0-9A-Za-z]{32}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment