How to divide a single field of a log in elasticsearch into multiple fields in a single event only using logstash filter plugin

khushi · November 9, 2022, 11:56am

I am sending emails from a mail service to elasticsearch. Now I want to have multiple fields of a single field.

tatdat · November 9, 2022, 3:19pm

Could you give some example, input data and expected output. Thank!

khushi · November 10, 2022, 4:30am

Hi, thanks for replying back.

This image shows the data I am getting in the message field of my log in elasticsearch and I want to separate these headers in the sense that the header name should be the name of the field and the value of that header should the value of that particular field.

khushi · November 10, 2022, 4:32am

Like you can see these fields I want to create such fields from that message field in the same event.

Topic		Replies	Views
Split event into multiple different messages Logstash	5	2075	July 27, 2018
How to create multiple events in logstash to push multiple request in elasticsearch Logstash	2	2391	November 9, 2017
Splitting an event into multiple documents Logstash	5	4131	January 31, 2018
Logstash split log and insert it separately into elasticsearch Logstash	2	407	July 31, 2021
Logstash Filter - Breaking up fields into multiple documents Logstash	5	2402	June 8, 2020

How to divide a single field of a log in elasticsearch into multiple fields in a single event only using logstash filter plugin

Related topics