#it showing double values in kibana help me out
input {
file {
path => "/var/log/aupm.log*"
}
}
filter {
grok {
match => { "message" => "%{DATESTAMP:timestamp} %{WORD:info} %{SPACE} %{NOTSPACE:http} %{GREEDYDATA:message} %{IP:client}" }
tag_on_failure => []
}
grok {
match => { "message" => "%{DATESTAMP:timestamp} %{WORD:info} %{SPACE} %{NOTSPACE:http} %{GREEDYDATA:message} %{IP:client} %{WORD:value}\[%{NUMBER:int}\]" }
tag_on_failure => []
}
grok {
match => { "message" => "%{DATESTAMP:timestamp} %{WORD:info} %{SPACE} %{NOTSPACE:http} %{GREEDYDATA:message}\[%{IP:client}\] %{GREEDYDATA:message1}" }
tag_on_failure => []
}
grok {
match => { "message" => "%{DATESTAMP:timestamp} %{WORD:info} %{SPACE} %{NOTSPACE:http} %{DATA:message}\[%{IP:client}\] %{WORD:type}=\[%{UUID:id}\]" }
tag_on_failure => []
}
grok {
match => { "message" => "%{DATESTAMP:timestamp} %{WORD:info} %{SPACE} %{NOTSPACE:http} %{GREEDYDATA:message}\[%{IP:client}\]" }
tag_on_failure => []
}
}