problem description there is a requirement to get the accessed domain name IP from the log and want to match the type and Chinese name of the website in filter. the type and Chinese name of the website are stored in a database file, just like a dic...
all the materials seen so far are filebeat.inputs: . Only under the include_lines attribute can be used for Filter log content. Such as filebeat.inputs: - type: log ... include_lines: [ ^ERR , ^WARN ] but now I don t open filebeat.inputs...
there are two log files a.log and b.log and two more redis An and redis B on the same machine. If you want to send two logs to two redis separately, how should I configure filebeat.yml? ...
how to modify the index name in the filebeat6.2 version. The default is the format "filebeat-6.2.1-2018.06.14 ". it is not possible to add "index: indexName " directly to the filebeat.yml file. ...
excuse me, A 4-core 8G machine with logstash, deployed on it can probably support several log input nodes of filebeat. If there is no message queue as buffer, do you have any experience in this field? similarly, how many logstash nodes can a 4-core ...
mainly wants to use filebeat to output directly to es, without using logstash. Used for log crawling. problem: after filebeat outputs the log to es, when looking at the log, it is found that the order in the log is out of order. developers seem to ha...
the architecture is simple: filebeat collects nginx logs, output to logstash logstash format and then output to elasticsearch There is nothing to say about the configuration of filebeat but to send the access.log of nginx directly to logstash ...