i 'am new in ELK , can you help me to create grok for the data 
are you intending to execute the grok pattern in logstash or in an ingest node pipeline?
hi weltenword ,
i 'am intending to execute the grok pattern in logstash
I don't speak French enough to derive useful field names, but maybe this can give you a starting point:
%{DATESTAMP:@timestamp} \|\| : %{DATA:service} *[,:] *%{DATA:event} *: %{GREEDYDATA:message}
It should result in something like
{
"@timestamp": "08/02/2019 07:02:12",
"service": "Service Commande",
"event": "CancelCommandeVenteBilling",
"message": "Erreur annulation commande de vente dans NaviBilling.Le produit commande de vente n° 1544531 est introuvable dans NaviBilling"
}
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.