Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use log.source.address instead of log.source.ip for network inputs #9487

Merged
merged 5 commits into from
Dec 14, 2018
Merged

Use log.source.address instead of log.source.ip for network inputs #9487

merged 5 commits into from
Dec 14, 2018

Conversation

jsoriano
Copy link
Member

Sources for network inputs can be of the form host:port, what cannot be
stored in ip fields.

Replaces #9460

@jsoriano
Use log.source.address instead of log.source.ip for network inputs
9f9da67 
Sources for network inputs can be of the form host:port, what cannot be
stored in ip fields.
@jsoriano jsoriano added bug review Filebeat Filebeat ecs Team:Integrations Label for the Integrations team labels Dec 11, 2018
@jsoriano jsoriano self-assigned this Dec 11, 2018
@jsoriano jsoriano requested a review from ruflin December 11, 2018 15:23
@elasticmachine
Copy link
Collaborator

Pinging @elastic/infrastructure

@jsoriano jsoriano mentioned this pull request Dec 11, 2018
Closed
ruflin
ruflin reviewed Dec 11, 2018
View reviewed changes
dev-tools/ecs-migration.yml Outdated
to: ["log.file.path", "log.source.ip"]
to:
- log.file.path
- log.source.ip
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I assume we can remove log.source.ip from this list?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not sure, I kept it in case it was being used, or was going to be used in other places, but I have no problem with removing it.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It "should" not be used anywhere else. Can you also do a quick search to make sure this is the case and remove it?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure 👍

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should I also remove it from fields.common.yml?

ruflin
ruflin reviewed Dec 11, 2018
View reviewed changes
Copy link
Contributor

@ruflin ruflin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Change LGTM. I think you need to adjust tests in a few places to make CI happy.

@jsoriano jsoriano merged commit 08b0b9f into elastic:master Dec 14, 2018
@jsoriano jsoriano deleted the log-source-address branch December 14, 2018 12:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ruflin ruflin ruflin approved these changes

Assignees

@jsoriano jsoriano

Labels
bug ecs Filebeat Filebeat review Team:Integrations Label for the Integrations team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jsoriano @elasticmachine @ruflin