I wanted to create a persistent boolean that I can change whenever a certain message appears. Based on this boolean I would change my output{ elastic search{ index file reference}}. E.g. log GET log dog Log PUT log 1234 The boolean should be set to true when it sees a 'log GET', and parses the…

Logstash Persistent Variables

Badger August 12, 2019, 3:12pm 2

You can use a ruby filter as described here. It requires '--pipeline.workers 1' and pipeline.java_execution has to be false until this bug is fixed.

Topic		Replies	Views
Ruby script and boolean Logstash	3	597	April 6, 2021
Comparing fields from input Logstash	3	662	August 4, 2019
Nested Field Different Data Types Logstash	3	295	June 8, 2018
Use ruby variable in if filter Logstash	4	2045	July 27, 2017
Issue when indexing booleans to elastic Elasticsearch	2	368	January 3, 2021

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.

Logstash Persistent Variables

Related topics