github-mirrors/logstash
1
0
Fork 0
mirror of https://github.com/elastic/logstash.git synced 2025-04-25 07:07:54 -04:00
Code Issues Projects Releases Packages Wiki Activity

- Add multiline and java stack trace parsing

Browse source
This commit is contained in:
Jordan Sissel 2010-11-20 10:13:10 +00:00
parent fc885e819c
commit eba5264077
1 changed files with 15 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

15
etc/prod.yaml
View file

@ -11,6 +11,8 @@ inputs:
- /var/log/apache2/access.log - /var/log/apache2/access.log
apache-error: apache-error:
- /var/log/apache2/error.log - /var/log/apache2/error.log
testing:
- /tmp/logstashtest.log
filters: filters:
- grok: - grok:
linux-syslog: # for logs of type 'linux-syslog' linux-syslog: # for logs of type 'linux-syslog'
@ -22,6 +24,12 @@ filters:
nagios: nagios:
patterns: patterns:
- %{NAGIOSLOGLINE} - %{NAGIOSLOGLINE}
loggly:
patterns:
- %{JAVASTACKTRACEPART}
testing:
patterns:
- %{JAVASTACKTRACEPART}
- date: - date:
linux-syslog: # for logs of type 'linux-syslog' linux-syslog: # for logs of type 'linux-syslog'
# Look for a field 'timestamp' with this format, parse and it for the timestamp # Look for a field 'timestamp' with this format, parse and it for the timestamp
@ -32,6 +40,13 @@ filters:
timestamp: "%d/%b/%Y:%H:%M:%S %Z" timestamp: "%d/%b/%Y:%H:%M:%S %Z"
nagios: nagios:
epochtime: %s epochtime: %s
- multiline:
supervisorlogs:
pattern: ^\s
what: previous
testing:
pattern: ^\s
what: previous
outputs: outputs:
- stdout:/// - stdout:///
#- elasticsearch://localhost:9200/logstash/all #- elasticsearch://localhost:9200/logstash/all