How to output to file is pattern format key|value in logstash

keep · December 11, 2018, 3:33am

Hello I have a data where I am trying to convert

The data look like this :
2018-10-25 11:59:20:037|2018-10-25 11:59:20:059|11111111111111111111|1234567890|null|/url/test-1|#test|000|20000|Success|null|Keep

The rules look like this :
input {
stdin{}
}
filter {

grok {
       match => ["message","%{TIMESTAMP_ISO8601:time}\|%{TIMESTAMP_ISO8601:test_time}\|%{WORD:number}\|%{WORD:tel}\|%{WORD:id}\|%{URIPATH:uri_path}\|%{GREEDYDATA:USSDCode}\|%{NUMBER:row_id}\|%{WORD:Status}\|%{WORD:Description}\|%{WORD:ResponseTime}\|%{GREEDYDATA:pack}"]
	
	remove_field => ["host"]
}

}
output {
file {
path => "/logstash-6.5.1/data/test.log"
}

stdout{ 
	codec => json { charset => "UTF-8" }
}

}
thank

system · January 8, 2019, 3:33am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.