Hi,
I am new to ELK and trying to setup log file monitoring for my weblogic servers. So far, I have setup filebeat on the linux server to send log details to ES/Kibana. This functionality is working.
However, the log entry in Kibana does entire weblogic message in a single "message" metadata value. Here is what I see as message metadata value:
####<Jul 27, 2020 6:48:23,487 PM UTC> <> <> <1595875703487> <[severity-value: 64] [rid: 0] [partition-id: 0] [partition-name: DOMAIN] > <Self-tuning thread pool contains 1 running threads, 4 idle threads, and 42 standby threads>
What I need is to extract few fields in message above (Timestamp, Server name, BEA code, severity) and want to see these fields as a metadata/value in ES record.
How can I achieve this? Any reference or direction would be helpful.
Thanks