In logstash, How to filter logs by json key and value?
Question
Currently I need to ignore some log in logstash.
my logstash input is as below:
input {
udp {
port => 5001
format => "json"
type => "udp"
}
}
logs like {"key1":"value1", "key2":"value2"} will send to port 5001
I like to drop all logs that with "key1":"value1", how can I achieve it?
I'v tried
filter {
grep {
match => { "key1" => "value1" }
negate => true
}
}
it doesn't work.
1 answers
solution1
0 2014-05-22 14:06:58
use the if syntax to do this:
filter {
if [key1] == "value1" {
drop {}
}
}
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Filter JSON by key value
How to filter a value of nested key of json
How to filter a value of nested key of json in postgres
How to filter a value of any key of json in postgres
how can i extract source hostnames from JSON logs on logstash
filter json in logstash
How to use JSON filter plugin to seperate message in JSON in logstash?
json javascript filter value on key
Filter JSON by key value with JavaScript
Accessing nested JSON Value with variable key name in Logstash
Related Tags