Hi,
I have problems with creating a grok filter to extract the file extension from the file name field.
Example data:
9151_to_9152.log
80bddb9998f9f66bc44b59d9899bbbb853b8958ecd9188e14fd0828e00246050.txt ($FILE_NAME)
I tried:
(.(?[^./]+))
But I don't want to have "($FILE_NAME)"...only the file extension.
Thanks!
(.(?[0-9A-Za-z]*))
Hm...but here is it still not working:
Apps - Process All.pas.0001.bak
Any idea?
Make sure you escape the period and add a $ anchor at the end so you only match alphanumerical sequences at the end of the string.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.