Skip to content

Instantly share code, notes, and snippets.

@vkisselmann

vkisselmann/logstash conf

Last active December 19, 2015 16:29
Show Gist options
  • Save vkisselmann/5984603 to your computer and use it in GitHub Desktop.
Save vkisselmann/5984603 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
logstash conf
input {
log4j {
format => "plain"
port => 5555
type => "log4j"
}
}
filter{
grok{
type => "worker_log"
pattern => [ "%{DATESTAMP:date} %{WORD:} \[%{LOGLEVEL:loglevel}\] type=METER, name=%{DATA:source}, count=%{NUMBER:count}, %{DATA:}" ]
}
}
output {
# stdout { debug => true debug_format => "json" }
elasticsearch {
cluster => "elastic"
}
}
------------INFO-----LOGSTASH-----LOG----------------
{:message=>"Successfully indexed", :event=>{"@source"=>"tcp://0.0.0.0:5555/client/1.2.3.14:12345", "@tags"=>[], "@fields"=>{"priority"=>"INFO", "logger_name"=>"testme", "thread"=>"metrics-logger", "class"=>"?", "file"=>"?:?", "method"=>"?"}, "@type"=>"log4j", "@source_host"=>"1.2.3.14:12345", "@source_path"=>"sourcepath", "@message"=>"type=METER, name=callExecutor.calls, count=0, min=0.0, max=0.0, mean=0.0, stddev=0.0, median=0.0, p75=0.0, p95=0.0, p98=0.0, p99=0.0, p999=0.0, mean_rate=0.0, m1=0.0, m5=0.0, m15=0.0, rate_unit=events/second, duration_unit=milliseconds", "@timestamp"=>"2013-07-12T13:56:37.896Z"}, :level=>:debug, :file=>"/opt/logstash/logstash.jar!/logstash/outputs/elasticsearch.rb", :line=>"177", :method=>"receive"}
{:message=>"heartbeat", :level=>:debug, :file=>"/opt/logstash/logstash.jar!/logstash/agent.rb", :line=>"491", :method=>"run_with_config"}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment