How to remove dynamical field?

stefansaye · April 11, 2016, 6:32am

Count from the message beginning of the number of sixth .
but i don't know how to make logstash to do ?

for example,
{ "message" => "..",
"host" => "10.10.10.13",
"@version" => "1",
"@timestamp" => "2016-04-08T06:22:17.711Z",
"type" => "snmptrap",
"MSDP-MIB::msdpPeerState_10_10_11_90" => "1",
"field_7"=>"field_7 content",
"source_ip" => "10.10.10.13"
}

i want to pick the sixth field is "MSDP-MIB::msdpPeerState_10_10_11_90" => "1",
i want the output looks like as below,

"message" => "..",
"host" => "10.10.10.13",
"@version" => "1",
"@timestamp" => "2016-04-08T06:22:17.711Z",
"type" => "snmptrap",
"MSDP-MIB::msdpPeerState_10_10_11_90" => "1",
"source_ip" => "10.10.10.13"

Topic		Replies	Views
Logstash filter - get field? Logstash	6	859	April 11, 2016
Logstash access dynamic field with ruby filter Logstash	9	863	April 5, 2021
Remove unnecessary fields in ElasticSearch Logstash	11	5694	July 6, 2017
Logstash: filter a dynamic field in the log line Logstash	5	557	July 6, 2017
Logstash snmptrap dynamic fields with ruby Logstash	4	1247	February 14, 2017

How to remove dynamical field?

Related topics