Hi all,
I create a grok pattern and execute some bash script..Unfortunately this script produce two line of output. The question is how to properly index the data into elasticsearch as it contains 2 line of text in message field ?
Example of line text in message field as below
Message => myhome1 totalspace: 1g availablespace:2g/nmyhome2 totalspace: 1g availablespace: 1g
As of now i can see like this message was index as one event in elasticsearch..anyidea how to properly handle this ? Any help asap is highly appreciated !