Parsing log file with logs of different patterns

(Prasad Zambare) #1

Hi All,

I am new to logstash in that matter ELK stack. A log file is having different processes logging data to it. Each process writes logs with different patterns. I want to parse this log file. Each log in this log file is started with below grok pattern,
%{SYSLOGTIMESTAMP:timestamp} %{SYSLOGHOST:logsource} %{SYSLOGPROG}: + %{SRCFILE:srcfile}:%{NUMBER:linenumber}
where SRCFILE is defined as [a-zA-Z0-9._-]+

Please let me know how can I parse this file so that different type of logs from each process logging in this file can be parsed.

Thank You,

(Jason Kopacko) #2

You can build out fully configured patterns to match against or do partial matches based on IF statements.

(system) #3

