-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathorderMessage.conf
More file actions
36 lines (31 loc) · 869 Bytes
/
orderMessage.conf
File metadata and controls
36 lines (31 loc) · 869 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
input {
file {
path => "/home/nik/Desktop/orderMessage.csv"
start_position => "beginning"
sincedb_path => "/dev/null"
}
}
filter {
csv {
columns => ["ZIP_FILE_NAME","FILE_NAME","INSTANCE_IDENTIFIER","MESSAGE_TYPE","ERROR_CODE","INSERT_DATE_AND_TIME","DOC_SEQNO","ERROR_MSG" ]
separator => ","
skip_header => "true"
add_field => {'timestamp' => '%{INSERT_DATE_AND_TIME}' }
remove_field => ["INSERT_DATE_AND_TIME", "ZIP_FILE_NAME","INSTANCE_IDENTIFIER","DOC_SEQNO", "ERROR_MSG"]
}
grok {
match => {"timestamp" => '%{YEAR:year}-%{MONTHNUM:month}-%{MONTHDAY:day}.*' }
}
mutate {
add_field => {"datestamp" => '%{year}\%{month}\%{day}' }
}
mutate {
remove_field => ["year", "month", "day"]
}
}
output {
elasticsearch {
hosts => ["localhost:9200"]
index => "ordertryyyyyy"
}
}