I am running tomcat service in client. I would like to monitor tomcat access logs and filter the logs which has response time greater than specific number.
e.g : I have the tomcat access log.
192.168.1.10 - - [26/May/2015:21:56:51 -0700] "POST /url HTTP/1.1" 200 50
In the example, it has the response time 50 in the 10th field. i would like to check condition at 10th filed. if the value exceeds the limit(specific number), i need to filter that logs.
Let me, what is the filter(grok or range) will be useful for that and also let me know the syntax.
Thanks in advance.