Log Analytics Workspace Table Sample for Edge Delta
A sample for creating a Log Analytics Workspace table.
2 minute read
You can use the following sample logs to create a log analytics workspace table for logs:
[
{
"timestamp": 1734351155946,
"resource":
{
"ed.conf.id": "12345678-s123-a123-b123-d12345678911",
"ed.demo": "fast_demo",
"ed.domain": "pipeline",
"ed.org.id": "12345678-s123-a123-b123-d12345678911",
"ed.source.name": "fast_demo",
"ed.source.type": "demo_input",
"ed.tag": "test_tag",
"host.ip": "192.168.0.0",
"host.name": "test_host",
"service.name": "fast_demo",
"src_type": "Demo"
},
"pattern": "* POST * HTTP* http * Mozilla* Linux * AppleWebKit* KHTML like Gecko Chrome* Mobile Safari*",
"pattern_count": 21,
"pattern_sample": "210.72.80.115 - - [16/12/2024:12:10:51 +0000] \"POST /v1/account/history HTTP/1.0\" 200 10211 \"http://www.investorenhance.com/dynamic/infomediaries/frictionless/eyeballs\" \"Mozilla/5.0 (X11; Linux i686) AppleWebKit/5320 (KHTML, like Gecko) Chrome/37.0.883.0 Mobile Safari/5320\"\n",
"sentiment_score": 0,
"start_timestamp": 1734351095946,
"data_type": "cluster_pattern_and_sample"
},
{
"timestamp": 1734351155946,
"resource":
{
"ed.conf.id": "12345678-s123-a123-b123-d12345678911",
"ed.demo": "fast_demo",
"ed.domain": "pipeline",
"ed.org.id": "12345678-s123-a123-b123-d12345678911",
"ed.source.name": "fast_demo",
"ed.source.type": "demo_input",
"ed.tag": "test_tag",
"host.ip": "192.168.0.0",
"host.name": "test_host",
"service.name": "fast_demo",
"src_type": "Demo"
},
"pattern": "* DELETE * HTTP* http * Mozilla* Linux * AppleWebKit* KHTML like Gecko Chrome* Mobile Safari*",
"pattern_count": 20,
"pattern_sample": "220.216.248.175 - - [16/12/2024:12:10:37 +0000] \"DELETE /v1/account/history HTTP/2.0\" 200 16261 \"http://www.investorenvisioneer.com/out-of-the-box/visionary/extend\" \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/5340 (KHTML, like Gecko) Chrome/40.0.839.0 Mobile Safari/5340\"\n",
"sentiment_score": 0,
"start_timestamp": 1734351095946,
"data_type": "cluster_pattern_and_sample"
},
{
"timestamp": 1734351155946,
"resource":
{
"ed.conf.id": "12345678-s123-a123-b123-d12345678911",
"ed.demo": "fast_demo",
"ed.domain": "pipeline",
"ed.org.id": "12345678-s123-a123-b123-d12345678911",
"ed.source.name": "fast_demo",
"ed.source.type": "demo_input",
"ed.tag": "test_tag",
"host.ip": "192.168.0.0",
"host.name": "test_host",
"service.name": "fast_demo",
"src_type": "Demo"
},
"pattern": "* PUT * HTTP* https * Mozilla* Linux * AppleWebKit* KHTML like Gecko Chrome* Mobile Safari*",
"pattern_count": 19,
"pattern_sample": "121.250.197.126 - - [16/12/2024:12:10:40 +0000] \"PUT /v1/account/balance HTTP/1.0\" 200 4908 \"https://www.internalmaximize.name/innovate\" \"Mozilla/5.0 (X11; Linux i686) AppleWebKit/5361 (KHTML, like Gecko) Chrome/38.0.847.0 Mobile Safari/5361\"\n",
"sentiment_score": 0,
"start_timestamp": 1734351095946,
"data_type": "cluster_pattern_and_sample"
}
]