Structuring Log Data
Logs aren’t always the easiest things to read, but Elasticsearch can help with that. This instructor-led course teaches you how to structure your unstructured data using an Elasticsearch ingest node.
Note: This course is a module of the Logging specialization.
Starting with a simple case of parsing a log file with a predefined parser, you will learn how to parse unstructured event data in hybrid cases using custom grok patterns. You will also learn how to handle and debug ingest errors along the way. After completing this course, you will be able to structure your log data however you want, regardless of its initial format.
- Structuring Unstructured Data
- Extracting Fields
- Combining Text Patterns with Grok
- Advanced Grok Techniques
- Hybrid Cases and Best Practices
- Stable internet connection
- Mac, Linux, or Windows
- Latest version of Chrome or Firefox (Safari is not 100% supported)
Virtual Classroom Information
This instructor-led course is only taught in a virtual classroom environment. We encourage participants to set up their systems prior to logging into the training environment the first day of the class. We also encourage being logged into the virtual classroom 15 minutes prior to the start of class each day.
This course is a module of the Logging specialization. Find out how our focused Training Specializations can help you with your use case.