Hi Luv, How are you sending the logs across to Elasticsearch? Without knowing a lot more about your setup, I can't help with that one. Assuming that your index really is called `aaaaaaaaa` what are the fields defined in there? How did you configure the index?
-- B On Tue, 13 Jun 2017 at 11:33 Luv via rsyslog <rsyslog@lists.adiscon.com> wrote: > Hi bob, that was very helpful and this time, the logs were parsed. > > But I am facing a new problem, > > < > http://rsyslog-users.1305293.n2.nabble.com/file/n7592459/Screenshot_from_2017-06-13_16-00-57.png > > > > I think kibana is facing difficulty in getting a timefield for this. Did > you > face it also ? Can you direct as to why this problem has come and also > steps > to solve this ? > > > > -- > View this message in context: > http://rsyslog-users.1305293.n2.nabble.com/liblognorm-rule-for-nginx-logs-tp7592454p7592459.html > Sent from the rsyslog-users mailing list archive at Nabble.com. > _______________________________________________ > rsyslog mailing list > http://lists.adiscon.net/mailman/listinfo/rsyslog > http://www.rsyslog.com/professional-services/ > What's up with rsyslog? Follow https://twitter.com/rgerhards > NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad > of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you > DON'T LIKE THAT. > _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
