Nginx error log parser

mohit Agrawal mohit3081989 at
Wed Jan 10 08:45:19 UTC 2018

Hi ,

I am looking to parse nginx error log so as to find out which particular IP
is throttled during specific amount of time on connection throttling  /
request throttling. The format looks like :

2018/01/10 06:26:31 [error] 13485#13485: *64285471 limiting
connections by zone "rl_conn", client: xx.xx.xx.xx, server:, request: "GET /api/xyz HTTP/1.1", host: ""

And the sample that I am looking for is :

{client: "xx.xx.xx.xx", server: "", host: "",
"request": "GET /api/xyz HTTP/1.1", reason: "limiting connections by
zone "rl_conn""}

so that I can pass it through ELK stack and find out the root ip which is
causing issue.

Mohit Agrawal
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the nginx mailing list