Hi,
I am looking to use the user_agent filter in logstash. In the guide (https://www.elastic.co/guide/en/logstash/current/plugins-filters-useragent.html#plugins-filters-useragent-regexes) it states
If not specified, this will default to the regexes.yaml that ships with logstash
Where would this file be within logstash? I have searched and cannot find it, i am trying to find out if that is kept upto date by logstash. I am on 7.10
Thanks
You can find it in /usr/share/logstash/vendor/bundle/jruby/2.5.0/gems/logstash-filter-useragent-3.2.4-java/vendor/jar-dependencies/org/logstash/filters/logstash-filter-useragent/3.2.4/logstash-filter-useragent-3.2.4.jar
/usr/share/logstash/jdk/bin/jar tvf logstash-filter-useragent-3.2.4.jar | grep rege
176617 Fri May 24 17:39:28 EDT 2019 regexes.yaml
@Badger
Thank you, didnt think to look in the files. I will be pulling the latest regexes myself then for the user agent.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.