gigamon/assets/logs/gigamon.yaml

id: gigamon
metric_id: gigamon
facets:
  - groups:
      - Web Access
    name: URL Path
    path: http.url_details.path
    source: log
  - groups:
      - DNS
    name: DNS ID
    path: dns.id
    source: log
  - groups:
      - DNS
    name: Response Code
    path: dns.flags.rcode
    source: log
  - groups:
      - Web Access
    name: Referer
    path: http.referer
    source: log
  - groups:
      - Web Access
    name: Request ID
    path: http.request_id
    source: log
  - groups:
      - Web Access
    name: URL Host
    path: http.url_details.host
    source: log
  - groups:
      - Web Access
    name: OS
    path: http.useragent_details.os.family
    source: log
  - facetType: list
    groups:
      - gigamon
    name: Application Name
    path: app_name
    source: log
    type: string
  - facetType: list
    groups:
      - gigamon
    name: dns_host
    path: dns_host
    source: log
    type: string
  - facetType: list
    groups:
      - gigamon
    name: dns_name
    path: dns_name
    source: log
    type: string
pipeline:
  type: pipeline
  name: gigamon
  enabled: true
  filter:
    query: "source:gigamon"
  processors:
    - type: attribute-remapper
      name: Map 'http_host` to `http.url_details.path`
      enabled: true
      sources:
        - http_host
      sourceType: attribute
      target: http.url_details.path
      targetType: attribute
      preserveSource: false
      overrideOnConflict: false
    - type: attribute-remapper
      name: Map `dns_transaction_id` to `dns.id`
      enabled: true
      sources:
        - dns_transaction_id
      sourceType: attribute
      target: dns.id
      targetType: attribute
      preserveSource: false
      overrideOnConflict: false
    - type: attribute-remapper
      name: Map `dns_flags` to `dns.flags.rcode`
      enabled: true
      sources:
        - dns_flags
      sourceType: attribute
      target: dns.flags.rcode
      targetType: attribute
      preserveSource: false
      overrideOnConflict: false
    - type: attribute-remapper
      name: Map 'http_header_value' to 'http.referer'
      enabled: true
      sources:
        - http_header_value
      sourceType: attribute
      target: http.referer
      targetType: attribute
      preserveSource: false
      overrideOnConflict: false
    - type: attribute-remapper
      name: Map 'http_request_ts' to 'http.request_id'
      enabled: true
      sources:
        - http_request_ts
      sourceType: attribute
      target: http.request_id
      targetType: attribute
      preserveSource: false
      overrideOnConflict: false
    - type: attribute-remapper
      name: Map 'http_host' to 'http.url_details.host'
      enabled: true
      sources:
        - http_host
      sourceType: attribute
      target: http.url_details.host
      targetType: attribute
      preserveSource: false
      overrideOnConflict: false
    - type: user-agent-parser
      name: Map 'http_user_agent' to 'http.useragent_details.os.family'
      enabled: true
      sources:
        - http_user_agent
      target: http.useragent_details.os.family
      encoded: false
      combineVersionDetails: false