Public Pastes
daily pastebin goal
23%
SHARE
TWEET

Untitled

a guest Jul 30th, 2013 28 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1.  grok {
  2.       type => "syslog"
  3.       tags => [ "tenant_id_as_space" ]
  4.       pattern => [ "<%{POSINT:syslog_pri}>%{TIMESTAMP_ISO8601} %{WORD:logger} %{LOGLEVEL:loglevel} %{WORD:tenant_id}: %{GREEDYDATA:syslog_message}" ]
  5.       add_field => [ "received_at", "%{@timestamp}" ]
  6.       add_field => [ "received_from", "%{@source_host}" ]
  7.       add_tag => [ "%{loglevel}", "tenant_id: " ]
  8.       replace => [ "@message", "%{syslog_message}" ]
  9.       if "%{loglevel}" == "ERROR"       /// Error
  10.         pattern => [ "%{WORD:alert} %{GREEDYDATA:syslog_message}" ]
  11.         add_tag => [ "%{alert}" ]
  12.       end
  13.   }
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top