Hello, I'm just playing around with logstash and hope to get help with a few topics. I'm trying to log some HP Procurve Switch syslog messages into elasticsearch. I used the example filter from the website. Which looks the following: match => { "message" => "%{SYSLOGTIMESTAMP:syslog_timestamp} %{…

How to logstash patterns/regex/co

ptamba May 15, 2020, 1:51pm 4

match => { "message" => “ %{SYSLOGTIMESTAMP:syslog_timestamp} %{SYSLOGHOST:syslog_hostname} %{INT} %{WORD:syslog_program}: %{GREEDYDATA:syslog-message} “

drop INT if you don’t want it or replace it with \d+

1 Like

Topic		Replies	Views
I really need help with standard rsyslog parsing Logstash	12	2568	July 6, 2017
Logstash Grok Parcing Based on SYSLOGPROG condition Logstash	5	2552	July 6, 2017
Help needed with Logstash and syslog config Logstash	6	765	July 6, 2017
Trivial syslog processing not working Logstash	16	3595	June 5, 2017
Grok pattern for SYSLOGPROG Logstash	4	1919	September 23, 2019

How to logstash patterns/regex/co

Related topics