Hi. Can i use HTTP filter (or other filter) to parse some fields from json AWS WAF logs from s3 bucket? logstash.conf: input{ s3 { bucket => "XXXX" access_key_id => "XXXX" secret_access_key => "XXXX" region => "XXX" codec => "json" } } I recive messages like this: [image] Output in kiba…

Logstash: parsing AWS WAF log

Badger August 20, 2019, 12:35pm 2

Take a look at this.

1 Like

Topic		Replies	Views
Logstash: parsing fields from json in array of another json Logstash	3	1255	October 24, 2018
Json filter not parsing AWS WAF Logs Logstash	6	352	December 27, 2023
Transforming/filtering json logs Logstash	1	241	March 22, 2020
S3 logstash conf grok filter Logstash	6	604	November 25, 2020
WAF logs Configuration from s3 bucket to Elasticsearch Using logstash s3 Plugin Logstash	3	612	November 16, 2022

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.

Logstash: parsing AWS WAF log

Related topics