List down all Fields

This support forum board is for support questions relating to Nagios Log Server, our solution for managing and monitoring critical log data.
Locked
lukedevon
Posts: 143
Joined: Sat Mar 24, 2018 9:15 am

List down all Fields

Post by lukedevon »

Hi

How can we list down all the possible Fields under ALL EVENTS, in the dashboard?

According to Nagios LS online demo, http://nagiosls.demos.nagios.com/nagioslogserver/ it is possible to add all the fields comes over the log types. However as I checked, there are no specific configurations in Input filters.

May I know how can I get it done as those fields are really helpful for filtering data.

Thank you
Luke
Top
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: List down all Fields

Post by cdienger »

Fields are created from mappings that are in turn are from inputs, codecs, or other filters in the logstash configuration.

The syslog input for example will automatically extract information and map it to fields it creates when syslog data comes in. The JSON codec(see the default Windows Event Log and Import Files - JSON inputs for example) will automatically create fields based off of the data in a JSON source. The kv filter will also automatically create fields based off of key-value pairs. The geoip filter is another filter that will automatically create fields regarding an IP address' geolocation.

There's also the option of creating fields using grok filters. See https://assets.nagios.com/downloads/nag ... ilters.pdf for examples.

Hope this helps. Let us know if you have any questions.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Top
Locked

Return to “Nagios Log Server”