Unable to create pipeline when using drop processor

matttjones60 · November 1, 2022, 1:51pm

Hi
Fairly new to Elastic so apologies if this is an obvious issue!
I'm trying to create a new processor to drop any entries containing:

user_agent.original =="GoogleHC/1.0"

But when I add a processor containing that key/value as a condition, I'm getting an 'unable to create pipeline' message. This would be a useful processor to create as currently we get a lot of GCP health check messages added to our logs and being able to exclude them would be tidier.
Any ideas would be appreciated!
Thanks

warkolm · November 2, 2022, 11:51pm

Welcome to our community!

Please share your full pipeline and the error you are getting.

system · November 30, 2022, 11:51pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Failed to add condition to grok processor Kibana elastic-stack-alerting	2	485	September 22, 2021
DROP processor does not appear to work in elastic search 6.5.0 with GROK Elasticsearch	2	425	December 31, 2018
Can not create pipeline while running logstash Logstash	4	383	May 2, 2018
Pub/Sub integration with JSON Processor: "Cannot index event (status=400): dropping event! Enable debug logs to view the event and cause." Elastic Agent	13	1974	April 11, 2024
Elastic Certified Observaibility Trainning Course - Lab 4.3 Elastic Training	3	314	July 29, 2023

Unable to create pipeline when using drop processor

Related topics