Page MenuHomePhabricator
Files F371789

raw-paste-data.txt
No One
Actions

Authored By
stwalkerster
Jan 20 2021, 8:47 PM
Size
1 KB
Referenced Files
None
Subscribers
None

raw-paste-data.txt
View Options

input {
file {
path => ["/mnt/**/*.log"]
start_position => "beginning"
sincedb_path => "/dev/null"
}
}
filter {
grok {
match => {
"message" => [
"\A\[%{TIMESTAMP_ISO8601:date}\]%{SPACE}-\!-%{SPACE}%{GREEDYDATA:channelevent}$",
"\A\[%{TIMESTAMP_ISO8601:date}\]%{SPACE}<(?<statuschar>[@ +])(?<nick>[^> ]*)\>%{SPACE}%{GREEDYDATA:privmsg}$",
"\A\[%{TIMESTAMP_ISO8601:date}\]%{SPACE}%{SPACE}\*%{SPACE}(?<nick>[^ ]*)%{SPACE}%{GREEDYDATA:actionmessage}$",
"\A--- (?<logevent>Day changed)%{SPACE}(?<date>%{DAY}%{SPACE}%{MONTH}%{SPACE}%{MONTHDAY}%{SPACE}%{YEAR})",
"\A--- (?<logevent>Log closed|Log opened)%{SPACE}(?<date>%{DAY}%{SPACE}%{MONTH}%{SPACE}%{MONTHDAY}%{SPACE}%{TIME}%{SPACE}%{YEAR})"
]
}
}
grok {
match => {
"path" => "/mnt/(?<network>.*)/(?<channel>.*)\.log"
}
}
date {
match => ["date", "yyyy-MM-dd HH:mm:ss", "EEE MMM dd yyyy", "EEE MMM dd HH':'mm':'ss yyyy"]
}
}
output {
stdout {
codec => rubydebug
}
elasticsearch {
hosts => ["elasticsearch"]
index => "irclogs"
}
}

File Metadata

Mime Type
text/plain; charset=utf-8
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
263126
Default Alt Text
raw-paste-data.txt (1 KB)

Event Timeline

stwalkerster.co.uk · helpmebot.org.uk · eyeinthesky.im · Phabricator · TeamCity · Nexus · Cloud