How to remove dynamical field?

stefansaye · April 11, 2016, 6:32am

Count from the message beginning of the number of sixth .
but i don't know how to make logstash to do ?

for example,
{ "message" => "..",
"host" => "10.10.10.13",
"@version" => "1",
"@timestamp" => "2016-04-08T06:22:17.711Z",
"type" => "snmptrap",
"MSDP-MIB::msdpPeerState_10_10_11_90" => "1",
"field_7"=>"field_7 content",
"source_ip" => "10.10.10.13"
}

i want to pick the sixth field is "MSDP-MIB::msdpPeerState_10_10_11_90" => "1",
i want the output looks like as below,

"message" => "..",
"host" => "10.10.10.13",
"@version" => "1",
"@timestamp" => "2016-04-08T06:22:17.711Z",
"type" => "snmptrap",
"MSDP-MIB::msdpPeerState_10_10_11_90" => "1",
"source_ip" => "10.10.10.13"

Topic		Replies	Views
Logstash filter - get field? Logstash	6	859	April 11, 2016
Remove unnecessary fields in ElasticSearch Logstash	11	5683	July 6, 2017
Remove field after parsing json Logstash	3	1006	April 14, 2022
Remove Parent fields in logstash filter Logstash	6	135	February 7, 2024
Elastic Json parse into logstash Logstash	30	1201	November 22, 2018

How to remove dynamical field?

Related Topics