Grock filter

Elastic Stack Logstash
1

Hi Team,
I have a logs as below and its currently view in kinaba, but i need to get logs from start and end point. as a example in below logs i need to get logs between "API CALL" to "API CALL END" in kibana. could you please help to create a grock filter for this.

logs ---

============================== API CALL [ad6ee9e98e83b45e34f586f68784208c] ============================

URL: https://contentapis-qa.BTcms.net/assessment-api/assessment/v2/urn:BT:work:

Request Payload:
""

Request Header:
["Content-Type:application/json","BTSSOSession:-dnekrOJgh9D78n-D60gexCggVo.AAJTSQACMDIAAlNLAB5Yk5OcVB5WEFFa2dJeExJT0E9AAR0eXBlAANDVFMAAlMxAAIwNw..","ApiKey:61h40NbINElGHC9fC6A5ZIA7","Correlation-Id:QUADD-b8aa9b4c-9179-45ae-9f83-cd0e516a2020"]

Response:
HTTP/1.1 400 Bad Request
Date: Thu, 06 Feb 2020 15:21:11 GMT
Content-Type: application/problem+json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: openresty/1.13.6.2
Cache-Control: no-store, no-cache, mustrevalidate, max-age=0
Pragma: no-cache
X-XSS-Protection: 1; mode=block
X-ContentType-Options: nosniff
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Prefer,x-authorization,If-Match,x-apikey,apikey,X-BTSSOSession,BTSSOSession,Correlation-id,X-Roles,X-Roles-Test,Authorization,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
Access-Control-Expose-Headers: contentdb-URN, contentdb-UUID, Link, Location, ETag

{"detail":"getAssessment.versionUrn: should be in format urn:BT:work:","status":400}

CURL Info: {"url":"https://contentapis-qa.BTcms.net/assessment-api/assessment/v2/urn:BT:work:","content_type":"application/problem+json;charset=UTF-8","http_code":400,"header_size":814,"request_size":378,"filetime":-1,"ssl_verify_result":0,"redirect_cou
nt":0,"total_time":0.013434,"namelookup_time":2.0000000000000002e-5,"connect_time":0.0014270000000000001,"pretransfer_time":0.0091660000000000005,"size_upload":0,"size_download":96,"speed_download":7384,"speed_upload":0,"download_content_length":-1,"upload_content_lengt
h":-1,"starttransfer_time":0.013406,"redirect_time":0,"redirect_url":"","primary_ip":"152.10.85.25","certinfo":,"primary_port":443,"local_ip":"10.10.10.45","local_port":59832}

Total time elapsed: 0.013434 second(s)

============================== API CALL END ============================

2

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.