misc notes

Logstash cheat sheet: Difference between revisions

Page Discussion

Logstash cheat sheet (view source)

Revision as of 16:00, 29 June 2017

219 bytes added ,  29 June 2017
→‎geoip support for GeoIPLite2-ASN database
Line 464: Line 464:


== geoip support for GeoIPLite2-ASN database ==
== geoip support for GeoIPLite2-ASN database ==
2.4.1 でうごくか...
4.2.1 でうごくか...


<syntaxhighlight lang="bash" enclose="div">
<syntaxhighlight lang="bash" enclose="div">
Line 470: Line 470:
Updating logstash-filter-geoip
Updating logstash-filter-geoip
Updated logstash-filter-geoip 4.1.1 to 4.2.1
Updated logstash-filter-geoip 4.1.1 to 4.2.1
</syntaxhighlight>
<syntaxhighlight lang="json" enclose="div">
geoip {
          database => "/etc/logstash/geoip/GeoLite2-ASN.mmdb"
          source => "postfix_client_ip"
          target => "postfix_bgp"
        }
</syntaxhighlight>
</syntaxhighlight>


Retrieved from "https://www.egrep.jp/wiki/index.php/Special:MobileDiff/5532"