63213c0e23
Apache grok pattern updated to match the size of response in bytes, the time taken to serve the request and the user-agent that made the request. Change-Id: I8ce6e6e10bbf55ef8aa21f983f4a6c4b6dc24402
13 lines
470 B
Django/Jinja
13 lines
470 B
Django/Jinja
<filter apache_access>
|
|
@type parser
|
|
reserve_data true
|
|
key_name Payload
|
|
<parse>
|
|
@type grok
|
|
grok_pattern \[%{HTTPDATE:Timestamp}\] "(?:%{WORD:http_method} %{NOTSPACE:http_url}(?: HTTP/%{NUMBER:http_version})?|%{DATA:rawrequest})" %{NUMBER:http_status} (?:%{NUMBER:http_bytes}|-) (?:%{NUMBER:http_response_time_us}|-) "%{DATA:referrer}" "%{DATA:agent}"
|
|
time_key Timestamp
|
|
time_format %d/%b/%Y:%H:%M:%S %z
|
|
keep_time_key true
|
|
</parse>
|
|
</filter>
|