Convert gb mb kb to bytes

Arun_Murugappan · September 19, 2018, 12:10pm

The below script works fine only if there is no whitespace in the data. Firstly, example 20mb, 2gb. it works fine. What if 20 mb or 2 gb. Secondly, what if the given data itself is in bytes, how do i include that?```

split the "store" into number, units prefix, and units base
grok {
# would like to put store_units_prefix and store_units_base in @metadata, too
match => { "store" => "^%{BASE10NUM:[@metadata][store_number]:float}(?<store_units_prefix>[kKmMgGtT])(?<store_units_base>[b])$" }
}
mutate {
add_field => {
"[@metadata][store_units_prefix]" => "%{store_units_prefix}"
"[@metadata][store_units_base]" => "%{store_units_base}"
}
remove_field => [ "store_units_prefix", "store_units_base" ]
}
if [@metadata][store_units_prefix] == "k" or [@metadata][store_units_prefix] == "K" {
mutate { add_field => { "[@metadata][store_multiplier]" => 1024 } }
} else if [@metadata][store_units_prefix] == "m" or [@metadata][store_units_prefix] == "M" {
mutate { add_field => { "[@metadata][store_multiplier]" => 1048576 } }
} else if [@metadata][store_units_prefix] == "g" or [@metadata][store_units_prefix] == "G" {
mutate { add_field => { "[@metadata][store_multiplier]" => 1073741824 } }
} else if [@metadata][store_units_prefix] == "t" or [@metadata][store_units_prefix] == "T" {
mutate { add_field => { "[@metadata][store_multiplier]" => 1099511627776 } }
}

I don't know how to specify type in mutate.add_field, so I convert it

mutate {
    convert => { "[@metadata][store_multiplier]" => "integer" }
}

create a new field with the size in bytes

ruby {
    code => "event['store_size'] = event['@metadata']['store_number']*event['@metadata']['store_multiplier']"
}

warkolm · September 19, 2018, 9:20pm

It's a lot easier to read code/config if you format it using the </> button, or markdown style back ticks.

magnusbaeck · September 20, 2018, 5:57am

Perhaps the third-party units filter plugin would be helpful?

Arun_Murugappan · September 21, 2018, 3:02am

I did not get that. What do you mean?

Arun_Murugappan · September 21, 2018, 3:08am

I dont see any units filter plugin in the

https://www.elastic.co/guide/en/logstash/current/filter-plugins.html

magnusbaeck · September 21, 2018, 6:13am

system · October 19, 2018, 6:13am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to convert gc logs from mb kb to bytes Logstash	2	1314	February 7, 2017
Convert strings with different data units (MB,GB,TB) to byte Elasticsearch	7	5816	July 5, 2017
Converting strings to integers then manipulating Logstash	7	591	May 23, 2018
Scripted fields Mb to bytes Kibana	2	1722	December 26, 2017
[SOLVED] Doing conversion byte to mega byte with logstash Logstash	4	3850	July 6, 2017

Convert gb mb kb to bytes

I don't know how to specify type in mutate.add_field, so I convert it

create a new field with the size in bytes

Related topics