Open lucianspec opened 7 years ago
i found Grok DSL is weird on match multiply patterns, so i post a discussion about it.
https://discuss.elastic.co/t/grok-with-multiple-matches-can-i-assign-type-based-on- match/60397/5
grok dsl cann't tell you which pattern is matched & u have to store this message into a new field.
i found Grok DSL is weird on match multiply patterns, so i post a discussion about it.
https://discuss.elastic.co/t/grok-with-multiple-matches-can-i-assign-type-based-on- match/60397/5
grok dsl cann't tell you which pattern is matched & u have to store this message into a new field.