Skip to content

Commit

Permalink
convert event.severity to long via grok
Browse files Browse the repository at this point in the history
  • Loading branch information
@andrewkroh
andrewkroh committed Nov 4, 2024
1 parent 8b89ab0 commit b0f92da
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions packages/cisco_aironet/data_stream/log/elasticsearch/ingest_pipeline/default.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,8 +36,8 @@ processors:
field: _temp_.full_message
ignore_failure: true
patterns:
- "%{DATA:event.provider}-%{INT:event.severity}-%{DATA:event.action}: %{DATA}:%{INT} %{GREEDYDATA:message}"
- "%{DATA:event.provider}-%{INT:event.severity}-%{DATA:event.action}: %{GREEDYDATA:message}"
- "%{DATA:event.provider}-%{INT:event.severity:long}-%{DATA:event.action}: %{DATA}:%{INT} %{GREEDYDATA:message}"
- "%{DATA:event.provider}-%{INT:event.severity:long}-%{DATA:event.action}: %{GREEDYDATA:message}"
- grok:
field: _temp_.full_message
ignore_failure: true
Expand Down

0 comments on commit b0f92da

Please sign in to comment.