Hello people! Again stupid question:)
I try processed syslog message through grok pattern.
I get all the required fields.
But all them have string type.
And for example request http_code:<204 don't worked.
I found example define pattern as %{INT:http_code;int} (a semicolon, not a
colon as in elastic)
And it worked, index mapped in elastic as:
"http_code": {
"type": "long"
}
where exists manual as right use grok patter in graylog with converters?
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/graylog2/e8629948-9a5c-4f9e-bdc1-88761e45a70a%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
