Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Flowlogs: Only messages with exactly 15 fields supported? #23

Closed
romanr opened this issue Nov 7, 2016 · 2 comments
Closed

Flowlogs: Only messages with exactly 15 fields supported? #23

romanr opened this issue Nov 7, 2016 · 2 comments

Comments

@romanr
Copy link

romanr commented Nov 7, 2016
edited

I have set up "Detailed monitoring" in AWS RDS instance. It is logging to Cloudwatch logs.
After setting up Kinesis filter stream, this is what I see in Graylog:

2016-11-07 18:54:06,894 WARN : org.graylog.aws.inputs.flowlogs.FlowLogCodec - Received FlowLog message with not exactly 15 fields. Skipping. Message was: [14785344844000 {"engine":"Postgres","instanceID":null,"instanceResourceID":"db-...","timestamp":"2016-11-07T18:54:04Z","version":1.00,"uptime":"23:53:00","numVCPUs":4,"cpuUtilization":

Is there some kind of limitation? Is 15 fields some kind of magic number?
@lennartkoopmann
Copy link
Contributor

This is not a FlowLog message. FlowLogs are the AWS network connection logs.

I'm creating an issue to support RDS Cloudwatch logs! Would you be willing to test that integration?

@lennartkoopmann lennartkoopmann mentioned this issue Nov 7, 2016
Closed
@romanr
Copy link
Author

romanr commented Nov 7, 2016

Yes I am ready to test

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@lennartkoopmann @romanr