Mikrotik logs

I want to parse the logs from mikrotik router.....
My logs are of type.....
"tags" => [
[0] "_geoip_lookup_failure"
],
"type" => "syslog",
"@version" => "1",
"@timestamp" => 2019-08-24T05:09:51.875Z,
"message" => "firewall,info 2-2: forward: in:HS out:bridge1, src-mac 20:d7:5a:5d:04:02, proto TCP (SYN), 172.22.100.29:45012->34.217.247.153:443, len 60",
"host" => "103.92.113.154"
}
{
"tags" => [
[0] "_geoip_lookup_failure"
],
"type" => "syslog",
"@version" => "1",
"@timestamp" => 2019-08-24T05:09:52.812Z,
"message" => "firewall,info 2-2: forward: in:HS out:bridge1, src-mac bc:2f:3d:10:e8:40, proto TCP (SYN), 172.22.100.27:43375->31.13.79.63:443, len 60",
"host" => "103.92.113.154"
}
{
"tags" => [
[0] "_geoip_lookup_failure"
],
"type" => "syslog",
"@version" => "1",
"@timestamp" => 2019-08-24T05:09:52.813Z,
"message" => "firewall,info 2-2: forward: in:HS out:bridge1, src-mac 20:d7:5a:5d:04:02, proto TCP (SYN), 172.22.100.29:40882->13.235.170.25:443, len 60",
"host" => "103.92.113.154"
}
{
"tags" => [
[0] "_geoip_lookup_failure"
],
"type" => "syslog",
"@version" => "1",
"@timestamp" => 2019-08-24T05:09:54.256Z,
"message" => "firewall,info 2-2: forward: in:HS out:bridge1, src-mac 20:d7:5a:5d:04:02, proto TCP (SYN), 172.22.100.29:56890->216.58.203.162:443, len 60",
"host" => "103.92.113.154"
}
{
"tags" => [
[0] "_geoip_lookup_failure"
],
"type" => "syslog",
"@version" => "1",
"@timestamp" => 2019-08-24T05:09:54.372Z,
"message" => "hotspot,debug 2-2: 08:4A:CF:05:A3:03 (172.22.100.23): sending RADIUS accounting Interim-Update request",
"host" => "103.92.113.154"
}

I tried many times but still able to get result can anyone help please?

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.