SUMO Logstash Plugin

Filters sumo access log lines and extracts useful information.

This projects needs jruby, so use "rvm use jruby". Tested and deployed with jruby 9.0.4.0

Versions

3.0.12 Updated ismvod to cover all types starting with ismvod 3.0.13 Updated to latest logstash version

Build

Update the version numder in logstash-filter-sumo.gemspec Update readme with new release information gem build logstash-filter-sumo.gemspec bundle exec rake publish_gem

Install in logstash

Go to main logstash directory bin/plugin install --version 3.0.11 logstash-filter-sumo

Test

Update your dependencies

bundle install

Pull down GeoIP database files

bundle exec rake vendor

Run tests

bundle exec rspec

Author : Leif Terje Fonnes ( [email protected] )