I am trying to perform Geoip filter while parsing json logs data from clouflare API but it says _geoip_lookup_failure
here is my conf
file configurations
input {
http_poller {
urls => {
test2 => {
method => get
url => "https://api.cloudflare.com/client/v4/user/audit_logs"
headers => {
"X-Auth-Email" => "my@email.com"
"X-Auth-Key" => "API_key"
"Content-Type" => "application/json"
}
}
}
codec => "json"
}
}
filter {
geoip {
source => "[actor][ip]"
}
}
output {
stdout { codec => rubydebug }
}
following is my output