Preprocessors
A preprocessor is a piece of logic attached to an output, which runs prior to processing the metrics. Some examples would include filtering specific keys on a metric or matching a specific key/value pair.
Generic preprocessors
filter_keys
Filters a metric for specific keys and only returns those keys specified.
config.yaml
# Example HTTP Output
outputs:
- type: "HTTPWebhookOutput"
options:
url: "http://10.4.21.133:3013/test"
headers:
x-api-key: default-change-me
timeout: 10
preprocessors:
- name: filter_keys
arguments:
keys:
- src_ip
- src_port
- x_ip
- x_port
- timestamp
- dst_ip
- dst_port
- event
match_kv
Filters metrics that only match the specific key/value pair.
config.yaml
# Example HTTP Output
outputs:
- type: "HTTPWebhookOutput"
options:
url: "http://10.4.21.133:3013/test"
headers:
x-api-key: default-change-me
timeout: 10
preprocessors:
- name: match_kv
arguments:
key: src_ip
value: 100.64.22.31
match_kvs
Like match_kv, but allows you to match multiple key/value pairs. If one doesn't exist then the metric is dropped.
config.yaml
# Example HTTP Output
outputs:
- type: "HTTPWebhookOutput"
options:
url: "http://10.4.21.133:3013/test"
headers:
x-api-key: default-change-me
timeout: 10
preprocessors:
- name: match_kvs
arguments:
kvs:
src_ip: 100.64.22.31
dst_port: 443
key_exists
Filters metrics that have a specific key, by default if the key is None then the metric is dropped.