Sanitize IP and user name information from .Net Full Framework

danbrad · May 28, 2020, 9:09am

Is it possible to sanitize the following pieces of information? I've added them to the SanitizeFieldNames setting, but they still come over.

client.ip
http.request.socket.remote_address
user.name

Thanks!

GregKalapos · May 28, 2020, 9:25am

Hi @danbrad, welcome on discuss!

In the SanitizeFieldNames you can define keys that will be checked when the agent reads HTTP headers or the request body when it's form-urlencoded.

The things you list typically don't come from those sources, that's why those still come over.

What you can do is to use the Filter API and set those properties to null.

danbrad · May 29, 2020, 7:08am

Awesome, thanks!

system · June 19, 2020, 3:09am

This topic was automatically closed 20 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Converting a string field to an IP field Elasticsearch	1	817	April 12, 2017
Match a IP and add a Name Logstash	3	424	October 20, 2017
How to remove data string if NULL from user-agent filtered Logstash	8	1051	October 19, 2018
How to filter username data from the field of request , using scripted_field Kibana	7	751	October 17, 2018
Script Processor Conditional Kibana painless	1	174	December 11, 2023