updates nginx pipeline w/ less geoip fields

roles/elasticsearch/templates/logstash-conf.d/nginx_pipeline.conf.j2

@@ -9,22 +9,29 @@ filter {
     match => [ "message" , "%{COMBINEDAPACHELOG}+%{GREEDYDATA:extra_fields}"]
     overwrite => [ "message" ]
   }
+
   mutate {
-   convert => ["response", "integer"]
+    rename => { "extra_fields" => "real_ip" }
-   convert => ["bytes", "integer"]
+    gsub => [ "real_ip", "\"", "" ] # remove qoutes
+    gsub => [ "real_ip", " ", "" ]  # remove whitespace
+
+    # fix
+    convert => ["http.response.status_code", "integer"]
+    convert => ["http.response.body.bytes", "integer"]
     convert => ["responsetime", "float"]
+    remove_field => ["host.containerized"]
   }
- # geoip {
+
- #   source => "clientip"
+  geoip {
- #   add_tag => [ "nginx-geoip" ]
+    source => "real_ip"
- # }
+    target => "geoip"
+    fields => ["city_name", "region_name", "country_name", "region_iso_code", "country_code2", "location"]
+  }
+
   date {
     match => [ "timestamp" , "dd/MMM/YYYY:HH:mm:ss Z" ]
     remove_field => [ "timestamp" ]
   }
- # useragent {
- #   source => "agent"
- # }
 }
 
 output {
@@ -36,4 +43,3 @@ output {
     document_type => "nginx_logs"
   }
 }
-