Follow

Keep Up to Date with the Most Important News

By pressing the Subscribe button, you confirm that you have read and are agreeing to our Privacy Policy and Terms of Use
Follow
Facebook Twitter Instagram Youtube
Contact

Amazon Cloudwatch Logs Insights

byMR
April 18, 2023

I have to find the results in cloud watch log insights and below are the fields in logs :

Field   Value
@ingestionTime  
1681410599635
@log    
875721534563:ftp_Logs
@logStream  
server
@message    
MDTM|13/04/2023 06:29:57 PM|[SFTP:2547246_0:abc:x.x.x.x] READ: *fileExists /abc/xyz.txt:true*
@timestamp  
1681410598624

I tried using

fields @timestamp, @message, @logStream, @log 
| filter @message="abc"
| sort @timestamp desc
| limit 2000

but not getting any results , if can help in parsing or filtering

MEDevel.com: Open-source for Healthcare and Education

Collecting and validating open-source software for healthcare, education, enterprise, development, medical imaging, medical records, and digital pathology.

Visit Medevel

>Solution :

filter @message="abc" finds the logs where the entire message is literally abc and nothing else.

What you want is filter @message like "abc". See the docs.

byMR
Published
Add a comment

Leave a Reply

Keep Up to Date with the Most Important News

By pressing the Subscribe button, you confirm that you have read and are agreeing to our Privacy Policy and Terms of Use

Read more

Discover more from Dev solutions

Subscribe now to keep reading and get access to the full archive.

Continue reading