【Logstash 1.5.6】Apache Logs
1、git
2、配置文件web
[root@hftest0001 conf]# cat first-pipeline.conf
input{
file{
path => "/opt/logstash-data/logstash-tutorial-dataset"
start_position => beginning
}
}
filter{
grok{
match => {
"message" => "%{COMBINEDAPACHELOG}" =>grok, %{COMBINEDAPACHELOG} 正在分隔
}
}
geoip{
source => "clientip" =>geoip
}
}
output{
stdout{
codec => rubydebug
}
}
input:
83.149.9.216 - - [04/Jan/2015:05:13:42 +0000] "GET /presentations/logstash-monitorama-2013/images/kibana-search.png HTTP/1.1" 200 203023 "http://semicomplete.com/presentations/logstash-monitorama-2013/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.77 Safari/537.36"
output:
{
"message" => "83.149.9.216 - - [04/Jan/2015:05:13:42 +0000] \"GET /presentations/logstash-monitorama-2013/images/kibana-search.png HTTP/1.1\" 200 203023 \"http://semicomplete.com/presentations/logstash-monitorama-2013/\" \"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.77 Safari/537.36\"",
"@version" => "1",
"@timestamp" => "2016-04-06T07:50:23.972Z",
"host" => "hftest0001.webex.com",
"path" => "/opt/logstash-data/logstash-tutorial-dataset",
"clientip" => "83.149.9.216",
"ident" => "-",
"auth" => "-",
"timestamp" => "04/Jan/2015:05:13:42 +0000",
"verb" => "GET",
"request" => "/presentations/logstash-monitorama-2013/images/kibana-search.png",
"httpversion" => "1.1",
"response" => "200",
"bytes" => "203023",
"referrer" => "\"http://semicomplete.com/presentations/logstash-monitorama-2013/\"",
"agent" => "\"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.77 Safari/537.36\"",
"geoip" => {
"ip" => "83.149.9.216",
"country_code2" => "RU",
"country_code3" => "RUS",
"country_name" => "Russian Federation",
"continent_code" => "EU",
"region_name" => "48",
"city_name" => "Moscow",
"latitude" => 55.75219999999999,
"longitude" => 37.6156,
"timezone" => "Europe/Moscow",
"real_region_name" => "Moscow City",
"location" => [
[0] 37.6156,
[1] 55.75219999999999
]
}
}
相關文章
- 1. 【Logstash 1.5.6】
- 2. 【Logstash 1.5.6】Filter-mutate
- 3. [Logstash-1.5.6 Pipeline]
- 4. docker logstash log docker logs to elasticsearch
- 5. 清理apache的logs
- 6. Manage Spring Boot Logs with Elasticsearch, Logstash and Kibana
- 7. A Quick Guide to Analyzing Apache Logs on Alibaba Cloud Log Service
- 8. Logstash
- 9. AWS CloudWatch Logs監控Apache日誌文件
- 10. [資訊] OpenCart 1.5.6 發佈
- 更多相關文章...
- • Docker 安裝 Apache - Docker教程
- • Docker logs 命令 - Docker命令大全
- • Tomcat學習筆記(史上最全tomcat學習筆記)
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
- 1. eclipse設置粘貼字符串自動轉義
- 2. android客戶端學習-啓動模擬器異常Emulator: failed to initialize HAX: Invalid argument
- 3. android.view.InflateException: class com.jpardogo.listbuddies.lib.views.ListBuddiesLayout問題
- 4. MYSQL8.0數據庫恢復 MYSQL8.0ibd數據恢復 MYSQL8.0恢復數據庫
- 5. 你本是一個肉體,是什麼驅使你前行【1】
- 6. 2018.04.30
- 7. 2018.04.30
- 8. 你本是一個肉體,是什麼驅使你前行【3】
- 9. 你本是一個肉體,是什麼驅使你前行【2】
- 10. 【資訊】LocalBitcoins達到每週交易比特幣的7年低點
歡迎關注本站公眾號,獲取更多信息
相關文章
- 1. 【Logstash 1.5.6】
- 2. 【Logstash 1.5.6】Filter-mutate
- 3. [Logstash-1.5.6 Pipeline]
- 4. docker logstash log docker logs to elasticsearch
- 5. 清理apache的logs
- 6. Manage Spring Boot Logs with Elasticsearch, Logstash and Kibana
- 7. A Quick Guide to Analyzing Apache Logs on Alibaba Cloud Log Service
- 8. Logstash
- 9. AWS CloudWatch Logs監控Apache日誌文件
- 10. [資訊] OpenCart 1.5.6 發佈