As you've written your filters both will try to match against the message. Given what your messages look like at most one filter can match. Instead, list both patterns in the same grok filter. The documentation contains an example of how to do that.
As you've written your filters both will try to match against the message. Given what your messages look like at most one filter can match. Instead, list both patterns in the same grok filter. The documentation contains an example of how to do that.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.