I have a process that tails our AWS CloudWatch logs. It works great, except for the fact that every line is prepended by the CloudWatch group and container ID. For example:
core-api 04a7ce3daf83aa018a92eb4a613c87354695dc8219f213697f7f786b81d4d [PROD] - INFO: GET 200 - 5ms
core-api 04a7ce3daf83aa018a92eb4a613c87354695dc8219f213697f7f786b81d4d [PROD] - INFO: POST 200 - 7ms
Is there a way to pipe my logs command I use with some type of filter to only show the line info after [PROD] -
?
Best Answer
You can try using
cut
to cut out the columns you are interested in.This
-d
sets a space as the field delimiter, and-f
specifies to display only the third and subsequent fields.Specifying fields can get more complex, too. Suppose you only really want to get rid of that annoying useless second field. You can then specify
-f 1,3-
.See the
cut
man page for more things you can do with this command.