How do I find out what my current version of logstash core patterns are running on my logstash cluster? I am running 7.17.1, but I suspect I am not running grok core patterns 4.34 ecsv1. I would like to have access to some of the patterns in here. Obviously, I could just copy these patterns into my patterns folders myself, but is this always necessary or is there a way to keep up with these better?
Thanks for any help.
If you want to know what is installed I would suggest
find /usr/share/logstash -type d -name patterns
If it is not installed you would need to copy what patterns you want to your own folder or use the pattern_definitions option on the grok filter.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.