【Logstash 1.5.6】Apache Logs
2016-04-06 00:00
393 查看
一、
二、配置文件
二、配置文件
[root@hftest0001 conf]# cat first-pipeline.conf
input{
file{
path => "/opt/logstash-data/logstash-tutorial-dataset"
start_position => beginning
}
}
filter{
grok{
match => {
"message" => "%{COMBINEDAPACHELOG}" =>grok, %{COMBINEDAPACHELOG} 正在分隔
}
}
geoip{
source => "clientip" =>geoip
}
}
output{
stdout{
codec => rubydebug
}
}input:
83.149.9.216 - - [04/Jan/2015:05:13:42 +0000] "GET /presentations/logstash-monitorama-2013/images/kibana-search.png HTTP/1.1" 200 203023 "http://semicomplete.com/presentations/logstash-monitorama-2013/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.77 Safari/537.36"
output:
{
"message" => "83.149.9.216 - - [04/Jan/2015:05:13:42 +0000] \"GET /presentations/logstash-monitorama-2013/images/kibana-search.png HTTP/1.1\" 200 203023 \"http://semicomplete.com/presentations/logstash-monitorama-2013/\" \"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.77 Safari/537.36\"",
"@version" => "1",
"@timestamp" => "2016-04-06T07:50:23.972Z",
"host" => "hftest0001.webex.com",
"path" => "/opt/logstash-data/logstash-tutorial-dataset",
"clientip" => "83.149.9.216",
"ident" => "-",
"auth" => "-",
"timestamp" => "04/Jan/2015:05:13:42 +0000",
"verb" => "GET",
"request" => "/presentations/logstash-monitorama-2013/images/kibana-search.png",
"httpversion" => "1.1",
"response" => "200",
"bytes" => "203023",
"referrer" => "\"http://semicomplete.com/presentations/logstash-monitorama-2013/\"",
"agent" => "\"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.77 Safari/537.36\"",
"geoip" => {
"ip" => "83.149.9.216",
"country_code2" => "RU",
"country_code3" => "RUS",
"country_name" => "Russian Federation",
"continent_code" => "EU",
"region_name" => "48",
"city_name" => "Moscow",
"latitude" => 55.75219999999999,
"longitude" => 37.6156,
"timezone" => "Europe/Moscow",
"real_region_name" => "Moscow City",
"location" => [
[0] 37.6156,
[1] 55.75219999999999
]
}
}
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- Apache连接数设置
- Apache服务器限制并发连接和下载速度
- apache最大连接数性能测试
- apache高负载性能调优
- apache配置中的Timeout和KeepAliveTimeout的解释
- centos下编译安装apache
- 阿里云主机windows系统Apache启用浏览器缓存的方法
- 编译安装apache
- apache2.4开启GZIP压缩
- 配置PHP与Apache2.4
- apache2.4中layout模块和ssi模块的冲突
- Apache Lucene 全文检索详解及开发示例
- ubuntu 14.04 apache maven 安装
- 异常:org.apache.ibatis.reflection.ReflectionException
- apache commons fileupload 1.3.1(八)文件条目信息部分
- Apache Lucene 示例讲解全文搜索
- 将apache添加为Linux系统自启动服务
- Apache无法启动,终极解决方法,适用于“应用程序无法正常启动 0xc000007b”错误
- linux服务器apache 一个IP,一个端口,建立多个网站的方法。
- mac下虚拟机Ubuntu下配置PHP+Apache+MySQL服务器环境以及按照Laravel