Update: Contrary to online job posting, you don’t need a college degree to work at Mass. McDonald’s
Looks like the story was bogus. Short version: Some other job posting service put the erroneous requirement in its listing.
However, [...]
Get “The Logstash Book”
No, I am not the author. I am, however, in the credits on page 1, with links and examples drawn from some of the content on this site. The author, James Turnbull, approached me and asked if it would be okay to do so and [...]
Drumroll please…
Introducing… zoooooooop!
I got sick of hard-coding calls to the python Zabbix API module (https://github.com/gescheit/scripts), so I wrote zoop: Zabbix Object-Oriented Python.
With zoop, I have made (and will continue to add) classes, or objects if you will, of Zabbix API calls. Need to create a new item?
[...]
I finally created a repository on GitHub for all of my Zabbix scripts (or, if you want to go directly to the repository: https://github.com/untergeek/zabbix-grab-bag)
This is the culmination of a dream that started a few years ago. I wanted a way to share [...]
I have just forked zbx-statsd from github into ls-zbxstatsd.
The reason for this is that zbx-statsd was not compatible with the format coming from logstash’s statsd output plugin.
Statsd format is simply “key:value|[type]“.
In logstash, “key” is different, and the format becomes “namespace.sender.’whatever you [...]
Expect this post to get updated from time to time. You can come back here to check out what I’m using and why.
2012-11-05: I now map IP addresses (clientip field) as type IP to allow for range searches. I also map the fields in the geoip filter output to allow for non-analyzed terms facet [...]
Update 2012-11-05: My most recent template/mapping can be found here.
I am updating previous templates in blogs accordingly, just FYI.
Logstash allows you to tag certain fields as types within elasticsearch. This is useful for performing statistical analysis on numbers, such as the byte fields or the duration [...]
My last post was about sending pre-formatted JSON to logstash to avoid unnecessary grok parsing. In this post I will show how to do the same thing from rsyslog.
And again, this comes with a disclaimer. My exact model here depends on a version of logstash recent enough to have the udp input. You could [...]
Last time we looked at ways to improve logstash/elasticsearch with elasticsearch templates. Today we’ll save ourselves a lot of grok parsing pain with apache’s custom log feature.
Disclaimer: This only works with versions of logstash supporting the UDP input. You can adapt this to send or log in another way, if you like, e.g. send [...]
Update 2012-11-05: My most recent template/mapping can be found here.
I find that logstash does a great job with the default index mapping behavior in elasticsearch if you are not sending a ton of log events. Once that amount begins to grow, however, there is a need to manage [...]
Recent Comments
June 2013 S M T W T F S « Apr 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30
