Hi ,
I am new on logstash , I have created grok pattern for below mentioned tomcat access logs.
10.0.6.35 - - [21/Oct/2019:00:00:21 +0000] "GET /rest/V1/productlist/category/4/ar/18/20 HTTP/1.1" 200 15917 25
My logstash conf file is:
I have changed my grok pattern still getting same error.
match => { "message"=>"%{IP:clientip} - - [%{NOTSPACE:date} +%{INT}] "%{WORD:action} /%{GREEDYDATA:api} %{WORD:protocol}/%{NUMBER:protocolNum}" %{NUMBER:status} %{NUMBER}"}
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.