Hey!
I got a Web-Interface where the User can add several IP-Addresses which are interested for him, the rest of the lines without that IP-Address should be removed from the log-file. I looked into grok and cidr filter but I am not sure if that is possible with them? Any ideas how to do that?
Thanks!
Please explain the use case in greater detail. Are you starting Logstash based on actions taken in a web interface? Reading one input file and writing the filtered log entries to another file?
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.