Add rules for apilistener logs

Icinga / icinga-logstash-pipeline

Logstash rules for Icinga logs

GNU General Public License v3.0

5 stars 0 forks source link

Add rules for apilistener logs #36

Closed Crited closed 5 years ago

Crited commented 5 years ago

Added a rule for apilistener logs

refers to #2

widhalmt commented 5 years ago

We do have a field named clientendpoint, maybe that would fit better in your pattern? Could you check that and reply here?

Besides: Please leave a comment with # explaining the change to the if condition. You explained to me in person but we both will forget within weeks why this extra regex is needed and we might remove it for performance reasons.

Crited commented 5 years ago

clientendpoint fits way better, because mine was straight up wrong. Thanks!

I also added a comment as you suggested. Relaying information here, should have thought of that.

widhalmt commented 5 years ago

Perfect! Merged.