Remove Spaces and text between these <> brackets

errupeshmca · July 14, 2022, 7:52pm

Hi , I am new to the elasticsearch i have to filter the logs removing larges spaces and less than, greater than signs around the text,

<NHTR> <HNANE: main                     > <INFO > <GHMonitorDaemon                    > <     GHMonitorDaemon.java:203       > /* Fri Jul 08 2022 15:37:25.0103  */ Initializing GHMonitor Version 7.1.10 202002152305

below config file (i didn't complete because it's not working)

filter {
    grok {
        match => ["message" => "\<%{WORD:name}\> \<%{WORD:dname}\: %{WORD:logname}"]
    }

}

Parsed Output

{
          "host" => "kmaster",
      "@version" => "1",
       "message" => "<NHTR> <HNANE: main                     > <INFO > <ProcessController                  > <   ProcessController.java:96        > /* Fri Jul 08 2022 15:37:27.0842  */ Initializing ProcessController, to start and monitor all the processes listed in ghmonitor configuration file.\r",
    "@timestamp" => 2022-07-14T19:48:54.032Z,
          "path" => "/home/vagrant/elk-install/ELK-Logs/logs-todo/logs-itsm-ar/armonitor.log"
}

system · August 11, 2022, 7:52pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.