Hi , I have configure logstash to read my log file which gives me below input. Now I want to split the message and create a field for each comma separated values against each. Tried to use mutate in my logstash.conf file however it did not work. Log snippet (This is a single line) werwerwer.com-…

Create fields by splitting a log

Badger March 4, 2020, 5:49pm 5

I would use dissect to parse the beginning of the line, something like this. Then use a json filter to parse the rest of the line.

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.