GROOK FILTER HOW TO SPLIT THE MULTI VALUE COLUMN

saravana_hariharan · December 11, 2019, 12:14pm

GROOK FILTER
%{NUMBER:TIME} \t %{WORD:SESSIONID} \t %{WORD:REQUESTID} \t %{WORD:CRUD} \t %{GREEDYDATA:FIELDVALUE}

My question is how to split one column,which has multiple values of (CREATEDBY,CREATEDTIME,UPDATEDBY,UPDATEDTIME) after indexpattern successfully created how to i get this createdby,updatedby, fields individualy in kibana field option

thanks
saravanan R

system · January 8, 2020, 12:14pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to split column which has multpiple values Logstash	3	320	January 10, 2020
How to split single field values in to multipleterms in logstash Logstash	3	311	January 9, 2020
Logstash jdbc string column value in sql. how to split individual field and value Logstash	5	436	February 5, 2020
Split field into multiple fields Logstash	4	1160	October 15, 2021
Logstash problems with splitting on field value Logstash	3	455	June 19, 2022

GROOK FILTER HOW TO SPLIT THE MULTI VALUE COLUMN

Related topics