Parse logs generated by Ksh script

Hello everyone,
I'm just beginning with ELK . I have a custom logs generated by Ksh Script (see Below) and I want is possible to exctact specific lines from it like (Comment,Start Date,End Date )
Perhaps should I use Grok Filter but I dont know how to process with it .

Thanks in davance

Program : Script_Test
Start Date : 23/06/2019_05:10:37

Liste des fichiers a la fin
-rw-r--r-- 1 svdr users 12335014 Jun 23 05:10 /appli/svdr/P/data/ACGA/Base_PRODUITS.CSV
-rw-r--r-- 1 svdr users 33661501 Jun 23 05:10 /appli/svdr/P/data/ACGA/KE24_Livraison.CSV
-rw-r--r-- 1 svdr users 62503 Jun 23 05:10 /appli/svdr/P/data/ACGA/ZC75.CSV
-rw-r--r-- 1 svdr users 17327587 Jun 23 05:10 /appli/svdr/P/data/ACGA/ZM36_products.CSV
Les fichiers extraits ANALYTICS CG AFRIQUE ont ete archivees, compresse et deplacees vers => /appli/svdr/P/transfert/Emis/ACGA_20190623-051037.tar.gz

Fin d'execution du script.

Program : ACGA_Extract
Comment : FIN_OK
Start Date : 23/06/2019_05:10:37
End Date : 23/06/2019_05:10:47
Return Code : 0

you can refer the url :http://grokdebug.herokuapp.com/patterns#

also to start with grok I would suggest to go with existing grok filter example

additionally you can write your own custom filter logic using various pattern options

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.