Hi, We are using the Grok filter in Logstash to parse and enrich our data. Grok provides inbuilt parsing for common log sources such as Apache, this allows us to add structure to unstructured data.
After the data has been parsed in Logstash, we then stream the data over Kafka to Flink for further CEP processing. We are looking to see if we can get rid of the Logstash piece and do all of the data enrichment and parsing in Flink. Our question - does Flink have an inbuilt library similar to Grok that provides out of the box parsing for common log formats. Thanks in advance, Aarti -- Aarti Gupta <https://www.linkedin.com/company/qualys> Director, Engineering, Correlation aagu...@qualys.com T Qualys, Inc. – Blog <https://qualys.com/blog> | Community <https://community.qualys.com> | Twitter <https://twitter.com/qualys> <https://www.qualys.com/email-banner>
