Question: Output Matching multiple tags

Question

Question: Output Matching multiple tags

kevinjenks opened this issue 3 years ago · 2 comments

If i was curious if there was a way to do this or if I need to experiment more with the regex but Im trying to capture the output for several different pods in eks fargate and push them into a single log group group by relevancy.

        Name cloudwatch_logs
        Match *foo|bar|baz*
        region us-east-1
        log_group_name <log_group_name>
        log_stream_prefix from-fluent-bit-
        auto_create_group true

Similarly with a date YYYYMMDD

    [OUTPUT]
        Name cloudwatch_logs
        Match *\b(\d{4})(0[1-9]|1[0-2])(0[1-9]|[12]\d|30|31)\b*
        region us-east-1
        log_group_name <log_group_name>
        log_stream_prefix from-fluent-bit-
        auto_create_group true

Answer 1 · 2021-11-29T04:49:36.000Z

Hi @kevinjenks, fluent bit now supports tag rewritten: https://docs.fluentbit.io/manual/pipeline/filters/rewrite-tag. I wonder if it will help in your case like rewriting the tag and then send the tag with same prefix to one log group?

Answer 2 · 2022-02-21T21:49:54.000Z

Going to close this issue as no response for a while. Please feel free to reopen it if there are more problems. Thanks.