is it possible to match the client_Ip field against a set of ips -> names?
right now i collect my haproxy logs into ES and can see the client_IP without any problem, all IPs are whitelisted, so i need to go on my firewall and look into the list, but it would be easier for other ppl, to see the name of the Partner behind the IP.
maybe someone has an idea?
was first thinking about a script with curl to add the named for each document, but...yea could be madness (index currently only have 3 - 4milion doc. each day)
so maybe something fancy within logstash, that i cant see?
thanks in advance for any idea and help,