Stack Overflow
Stack Overflow

Questions tagged [logstash-file]

Logstash File Input stream events from Files

221 questions
1
vote
2 answers

Not able to map csv file from logstash to kibana in Window

I'm trying to feed data in csv files into elastic search using logstash. My logsatsh config file looks like this: input { file { path => "D:\Log Anlyser\data\cars.csv" start_position => "beginning" sincedb_path => "NUL" } } filter { csv…
Swaraj
  • 79
  • 1
  • 8
1
vote
0 answers

Logstash open_file handle issue For Linux

I'm facing until recently a very peculiar warning on the logstash log file [filewatch.tailmode.handlers.createinitial] open_file OPEN_WARN_INTERVAL is '300', i've searched around the web for every possible help to dig it myself but could not found…
Karn Kumar
  • 8,518
  • 3
  • 27
  • 53
1
vote
1 answer

How to create multiple indexes based on conduction in logstash

Trying to create multiple indexes for elasticsearch in logstash. But my "if conduction" is not creating any single index, without if conduction it is working fine. But if I'm using input as file and in logstash without using filebeat then it is…
Vinit Jordan
  • 313
  • 1
  • 5
  • 13
1
vote
0 answers

Extracting filename from existing field (Source)?

from the below source path, i want to get "servicename" as an another field. can someone please provide the example use case? source path = "/var/log/companyname/servicename/example/test/testfile.log" How can i give grok filters in logstash for…
user
  • 11
  • 1
1
vote
0 answers

Logstash- file input adds escaping

I would like to disable escaping when receiving events from a file. For instance, here is the event (input is a file): a=\"hello\" b=\"world\" This is the output: a=\\"hello\\" b=\\"world\\"\r" While using other inputs such as tcp, udp, no escaping…
SKallmann
  • 170
  • 1
  • 5
1
vote
0 answers

logstash is not fetching data from log file

logstash is configured with elasticsearch which should store data coming from logstash. configuration has been done properly still not fetching. input { file { path => "C:\Users\vishadub\Documents\elkstackTools\logs\error_log.log" …
Vishal Dhar Dubey
  • 31
  • 2
1
vote
0 answers

How to feed CSV to logstash with Dynamic Index mapping

Trying to feed logstash a csv for elastic indexing facing mapping error. The conf code is using autodetect_column_names so I don't have to feed in the columns name. Also I havent created any index or mapping for the data from dev console and…
Amandeep Singh
  • 305
  • 2
  • 11
1
vote
0 answers

Logstash multiline codec does not recognize the pattern

I was trying to parse a log file with multiple log messages separated per line using Logstash but it failed to do. My logstash configuration file is as follow: file{ path=> "/home/vm01/Documents/csb-demo/csb-result.txt" …
Ihsan Haikal
  • 1,085
  • 4
  • 16
  • 42
1
vote
1 answer

how to apply if condition on fields of json contained in a log

I have a log which contains json, i want to apply if condition on one of the fields of json. log format: [2018-03-22T16:47:31.113] INFO {"code":200,"type": "everything looks good", "text":"Starting server at port => 5003"} {../../app.py:14:8} I am…
prashant pandey
  • 23
  • 6
1
vote
0 answers

Logstash parse csv file

I have a csv file that has a column that contains json object, sometimes the json input in this format that working correctly: "{""field1"":""value1"",""field2"":""value2""}" But sometimes it is the below format that corrupt the whole…
zeina reda
  • 11
  • 2
1
vote
0 answers

Trigger log parsing in logstash during start up

I had troubles with parsing of logs with logstash during startup Once I add an exta line to log file it is filtered, output generated to file succesfully It seems that parsing only is triggerred once change is observer 1) Is there a setting for the…
Vladyslav Didenko
  • 1,352
  • 1
  • 14
  • 19
1
vote
0 answers

How to parse nested JSON data with logstash filter

I have a json file which is having data like this { "foo" : "bar", "test" : { "steps" : [{ "response_time" : "100" }, { "response_time" : "101", "more_nested" : [{ …
ritesh
  • 35
  • 6
1
vote
1 answer

How do I parse a tmx file (xml file for translation data) in logstash

I am using TMX files (xml file for translation data) as my source in Logstash to index data in Elasticsearch. A sample TMX file looks like this,
avizzzy
  • 440
  • 9
  • 21
1
vote
0 answers

Logstash is sending a log twice. Repeating logs Issue

I am parsing logs of a file of my server and sending only info, warning and error level logs to my API but problem is that I am receiving a log two times. In output I am mapping parsed logs values to on my JSON fields and I am send that json to my…
Mishi
  • 628
  • 4
  • 16
  • 40
1
vote
1 answer

Logstash parser error, timestamp is malformed

Can somebody tell me what I'm doing wrong, or why Logstash doesn't want to parse an ISO8601 timestamp? The error message I get is Failed action ... "error"=>{"type"=>"mapper_parsing_exception", "reason"=>"failed to parse [timestamp]", …
KBoek
  • 5,794
  • 5
  • 32
  • 49
1 2 3
14 15