Rename snmp dynamic fields

Badger · November 18, 2019, 3:01pm

Try

    ruby {
        code => '
            event.to_hash.each { |k, v|
                if k =~ /^(ifDescr|ifInDiscards|ifInErrors|ifInOctects|ifOperStatus|ifOutDiscards|ifOutErrors|ifOutErrors|ifOutOctects)/
                    newk = k.gsub(/\.[0-9]+$/, "")
                    event.set(newk, v)
                    event.remove(k)
                end
            }
        '
    }

The if statement is probably optional.

Topic		Replies	Views
How i can rename dynamical fields Logstash	4	270	February 16, 2023
Rename field with dynamic name Logstash	3	2575	May 22, 2018
Logstash snmptrap dynamic fields with ruby Logstash	4	1247	February 14, 2017
How to make Ruby selectively remove the top level field from a specific nested field pattern Logstash	5	912	July 7, 2020
How to dynamic parse fieldname and replace? Logstash	3	1246	June 20, 2019

Rename snmp dynamic fields

Related topics