hey
any idea about filter and pattern for kibana to display zimbra logs ??
Can you provide more details about what you're trying to do with Kibana? I'm not sure what you're trying to find out here.
i am trying to filter zimbra log files ( /opt/zimbra/log/mailbox.log ) using logstash grok to extract some fields like client ip ,sender,recipient,msgid....
Ah, sorry, I don't know anything about zimbra or its logging format. Can you provide some example logs?
Also, I think this question is probably best suited for the logstash forum instead of Kibana, so I'm going to move this over there to make sure it gets more exposure to folks that live and breathe pipelines.
Actually, upon re-reading this thread, I'm still not clear on what the problem is, so I won't move this to the logstash forums just yet.
Have you successfully used logstash to index your data into Elasticsearch, or are you seeking help with setting up the correct logstash filters in order to parse those logs into structured data?
This is some logs from mailbox.log
2017-03-13 11:50:37,038 INFO [LmtpServer-4] [ip=192.168.1.102;] lmtp - Delivering message: size=1520 bytes, nrcpts=1, sender=admin@server.tn, msgid=20170313103223.B3A2F412FF41@zimbra.server.tn
2017-03-13 11:50:37,040 INFO [LmtpServer-5] [ip=192.168.1.102;] lmtp - Delivering message: size=1507 bytes, nrcpts=1, sender=admin@server.tn, msgid=20170313103227.16434412FF5E@zimbra.server.tn
2017-03-13 11:50:37,040 INFO [LmtpServer-2] [ip=192.168.1.102;] lmtp - Delivering message: size=1510 bytes, nrcpts=1, sender=admin@server.tn, msgid=20170313103223.403D5412FF58@zimbra.server.tn
I'm seekin help with setting up the correct logstash filters in order to parse those logs into structured data
Hi Mhamed,
Can you please post this question in logstash category? Here: https://discuss.elastic.co/c/logstash
They will be able to help you out.
Cheers,
Bhavya
Done ..thank you 
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.