Cloudera Community

Archives of Support Questions (Read Only)

This is an archived board for historical reference. Information and links may no longer be available or relevant
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
This board is archived and read-only for historical reference. To ask a new question, please post a new topic on the appropriate active board.
Solved Go to solution

How to filter logs according to terms using Apache Nifi?

Labels:
avatar
author-rank xavwebmaster
New Member

Created ‎10-13-2017 11:07 AM

Hello everyone,

I'm receiving logs as input, these I separate using the processor splittext in line by line.

I am interested in being able to divert these according to a certain field to different destinations.

I am not sure how to generate these attributes or conditions in order to derive the log lines using the routeonattribute processor, or routeontext depending on what you recommend.

Example of entries:

1467, monday, texas, allow, smtp, mail,etc

1468, monday, texas, deny, smtp, mail,etc

Expected output:

To Putkafka (If the line of log contains the term' allow')

To Putfile (If the line of og contains the term' deny')

Thank you very much

5,060 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank ahadjidj author-rank
Guru

Created on ‎10-13-2017 12:03 PM - edited ‎08-17-2019 08:49 PM

@xav webmaster

Can you test RouteOnContent with the property configured as follows :

40827-screen-shot-2017-10-13-at-20117-pm.png

This routes flow files based on the fact that a line contains "Allow" or not. You will have two relations : Allow and unmatched

View solution in original post

4,229 Views
0 Kudos
4 REPLIES 4

avatar
author-rank ahadjidj author-rank
Guru

Created ‎10-13-2017 11:13 AM

@xav webmaster

You need to generate flow file attributes based on the content of your data. These attrbutes will be used for routing in RouteOnAttribute. To construct these attributes you can use UpdateAttribute/ExtractText with Expression Langage.

If you just want to check if the line contains Allow or Deny you can use contains : https://nifi.apache.org/docs/nifi-docs/html/expression-language-guide.html#contains

If you want to verify a particular field then you need to parse the line. There are several methods to do it. For instance, you can use the function getDelimitedField since it's a CSV. Look also to record based processor. They have a ton of optimisation that can help you.

https://community.hortonworks.com/articles/102183/record-based-processors-in-apache-nifi-12.html

https://blogs.apache.org/nifi/entry/record-oriented-data-with-nifi

4,229 Views
0 Kudos

avatar
author-rank xavwebmaster
New Member

Created ‎10-13-2017 11:29 AM

Hi, thanks for the help. Then I understand that the scheme would be in: listensyslog > splittext > updatettribute > routeonatribute > putfile or putkafka

4,229 Views
0 Kudos

avatar
author-rank ahadjidj author-rank
Guru

Created on ‎10-13-2017 12:03 PM - edited ‎08-17-2019 08:49 PM

@xav webmaster

Can you test RouteOnContent with the property configured as follows :

40827-screen-shot-2017-10-13-at-20117-pm.png

This routes flow files based on the fact that a line contains "Allow" or not. You will have two relations : Allow and unmatched

4,230 Views
0 Kudos

avatar
author-rank xavwebmaster
New Member

Created ‎10-13-2017 12:45 PM

It worked perfectly. Thanks!
4,229 Views
0 Kudos
Announcements
What's New @ Cloudera
Product Update: Cloudera Flow Management Operator for Kubern...
What's New @ Cloudera
Product Update: Cloudera Data Flow v3.1 for Cloudera on Clou...
Community Announcements
May 2026 Community Highlights
Community Announcements
Testing the tags to new post
What's New @ Cloudera
Cloudera Real time Monitoring for 7.1.9+ and 7.2.18+ with Cl...
View More Announcements