Stack Overflow
Stack Overflow

Questions tagged [grok]

Grok is a web framework running atop of Zope application server written in Python with aim to make Zope technology more accessible to the masses as well as speed up the development process. Exploiting convention-over-configuration paradigm, Grok uses Zope Toolkit libraries and provides building blocks for your application along with the way to tie it all together.

Grok is a web framework running atop of Zope application server written in Python with aim to make Zope technology more accessible to the masses as well as speed up the development process.

Exploiting convention-over-configuration paradigm Grok uses Zope Toolkit libraries and provides building blocks for your application along with the way to tie it all together.

Visit grok to learn more.

486 questions
2
votes
1 answer

Different behavior in Grok debugger and Logstash grok

My scenario is the following: I've got a stack trace as the input to my Logstash instance. Since I use GELF, the whole stack trace is transfered in a single field and looks like this (shortened): javax.servlet.ServletException: Something bad…
pklndnst
  • 726
  • 2
  • 10
  • 27
2
votes
3 answers

Impossible to use grok date match correctly

I have this message 2016/02/22 08:40:10 [error] 2127#0: *193 open() "/etc/nginx/nginx/html/static-cdn.arte.tv/resize-preprod/nQa5oWnNDknADSxe0mPEMd5McUA=/940x530/smart/default/prog_img/IMG_APIOS/051000/051700/051757-001_1137283_32_202.jpg" …
glmrenard
  • 675
  • 1
  • 8
  • 16
2
votes
1 answer

Logstash grok chain conditional filters

I'm trying to create a grok pattern for a mixed log. This is my first time creating a conditional chain and I keep getting syntax errors: opt/logstash/bin/logstash -f /opt/logstash/conf.d/sip-parser.conf -- configtest Error: Expected one of #,…
user211984
  • 23
  • 3
2
votes
2 answers

Grok pattern to parse the ESC key

I was writing a grok pattern to parse the logs in fluentd of cinder-api, one line out which is: 2015-09-17 17:44:49.663 ^[[00;32mDEBUG oslo_concurrency.lockutils [^[[00;36m-^[[00;32m] ^[[01;35m^[[00;32mAcquired semaphore "singleton_lock"^[[00m…
reza.safiyat
  • 499
  • 10
  • 21
2
votes
1 answer

logstash / grok pattern file

I am parsing IIS logs, and I have everything working when all patterns are in the config file. I want to take out all the patterns and put them in a pattern file, but cannot seem to get it to work. What I have: Log example: 2015-09-08 16:02:23 GET…
Dhrumil
  • 117
  • 5
  • 13
2
votes
2 answers

NginX Grok Pattern - Handling Backslashes or Brackets?

I'm trying to nut out all _grokparsefailure's on my logstash box. Seems the only two culprits are NGINX logs which trip up my NGINXACCESS pattern: %{IPORHOST:clientip} %{NGUSER:ident} %{NGUSER:auth} \[%{HTTPDATE:timestamp}\] "%{WORD:verb}…
autonomy
  • 23
  • 3
2
votes
1 answer

Logstash configuration: http output with Base 64 encoded headers

I use Logstash with File Input & Http Output to a homegrown service which requires credentials (username:password) to be sent as Base64 encoded value. Below is my Logstash configuration. Currently I can send the Base 64 encoded value via headers…
John C
  • 1,795
  • 4
  • 27
  • 42
2
votes
0 answers

How to split Logstash event containing multiple times the same pattern

I'm reading a xml formated input and I'm trying to extract each row of a html table as a separate event. For example if my input is :
1 2
3 4
I want the…
vdolez
  • 977
  • 1
  • 14
  • 33
2
votes
1 answer

timezone incorrect in logstash / ELK / elasticsearch

I am new to elastic search and have spent a long time trying to solve the question below. Perhaps the solution should be in the documentation - but it is not :-( I have servers running in multiple time zones. The log files get rsynced into servers…
linuxdave
  • 51
  • 1
  • 5
2
votes
1 answer

Plone 4.3.x - grokcore.view - UserWarning: Found the following unassociated template after configuration

On a vanilla Plone 4.3.3 site (Unified Installer on Ubuntu 14.04.1LTS), and after updating buildout.cfg with the zopeskel and paster boiler plate stuff and running buildout, I successfully created a dexterity package in my src folder: $ cd src $…
Eric R.
  • 81
  • 3
2
votes
1 answer

Logstash conf file for parsing django exceptions

I have been trying to use logstash, elastic search, and Kibana for monitoring my django server. I have set the conf file as given below input { tcp { port => 5000 codec => json } udp { port => 5000 type => syslog } } output { …
midhun
  • 157
  • 2
  • 2
  • 10
2
votes
1 answer

Logstash and Windows 2008 DNS debug logs

I'm shipping Windows DNS debug logs via json into Elasticsearch and I need to parse them. As with Microsoft nothing is easy. The DNS debug log is not a CSV. The only useful thing in that file is that it has fixed lengths of columns. Here is a sample…
g03l
  • 23
  • 4
2
votes
0 answers

Tweaking Plone Dexterity Container View

I have a custom plone dexterity content type which is a container of other dexterity types. I have added an additional view to recursively summarize the contents of this type. I'm needing anonymous users to be able to navigate to the default view…
matteorr
  • 143
  • 1
  • 5
2
votes
3 answers

Logstash date parsing error

Summary: I have my log with the date format as shown : 2013/05/09-05:19:16.772 Now I want to use logstash and send these logs to elastic search. But the problem is that I want that the timestamp value should be that of the logs and not the current…
user2359303
  • 261
  • 2
  • 7
  • 15
2
votes
1 answer

Developing grok-style Dexterity add-ons in Plone 4.3

According to: http://plone.org/products/dexterity/documentation/how-to/install To use grok-style declarations in Plone 4.3 one must install Dexterity via buildout with setuptools extras requirements: grok and relations (referring to extras_require…
aclark
  • 4,345
  • 1
  • 19
  • 31
1 2 3
32 33