<div dir="ltr">Hi All, here a few examples about how look ELK (ElasticSearch + Logstash + Kibana) stack with Icecast logs parsed.<div><br></div><div>Last 7 days: <a href="http://bit.ly/1CHlhiS">http://bit.ly/1CHlhiS</a></div><div>Last 30 days: <a href="http://bit.ly/1DgM5c2">http://bit.ly/1DgM5c2</a></div><div><br></div><div>If any be interested in try here is the Logstash config for parse the logs: <a href="http://bit.ly/1IbvYxI">http://bit.ly/1IbvYxI</a></div><div><br></div><div>Some interesting filters that we use here, is remove any session lower of 60 seg, filter bots, monitoring users-agents, request to non mountpoints and consolidate by Uniq IP</div><div><br></div><div>Regards, </div><div>Alejandro</div></div><div class="gmail_extra"><br><div class="gmail_quote">2014-02-20 8:03 GMT-03:00 Daniel James <span dir="ltr"><<a href="mailto:daniel.james@sourcefabric.org" target="_blank">daniel.james@sourcefabric.org</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi Thomas,<br>
<span class=""><br>
> What's really nice is, that it understands the Icecast log format<br>
> extension where we record the duration of the connection in seconds.<br>
<br>
</span>I can't take credit for that, the work was done by Alejandro:<br>
<br>
<a href="https://github.com/piwik/piwik/pull/65" target="_blank">https://github.com/piwik/piwik/pull/65</a><br>
<br>
Cheers!<br>
<span class="HOEnZb"><font color="#888888"><br>
Daniel<br>
</font></span><div class="HOEnZb"><div class="h5">_______________________________________________<br>
Icecast-dev mailing list<br>
<a href="mailto:Icecast-dev@xiph.org">Icecast-dev@xiph.org</a><br>
<a href="http://lists.xiph.org/mailman/listinfo/icecast-dev" target="_blank">http://lists.xiph.org/mailman/listinfo/icecast-dev</a><br>
</div></div></blockquote></div><br></div>