Hi,
I am running multiple java applications and creating logging files for each one, so i decided to use elastic stack for Centralised Log Management. My question is how can i add port and IP address fields to my index pattern. should i use mutate filter plugin or do i specify them in my input.
Actually this is what i was looking for, Thank you so much. Last question, is it possible for Logstash to enter the port number of the java application after sending a log request?
Is it done like this in my Logstash configuration file
I am getting them hard coded instead of the actual values for the IP address and Port of my java application. Do i have to include them in the input of my logstash conf file?
{
"message" => "2020-01-15 02:25:20.375 INFO [microservice1,26bb961d71430a27,26bb961d71430a27,false] 22525 --- [http-nio-8001-exec-4] c.s.m.c.Microservice1Controller : This is an INFO log",
"@timestamp" => 2020-01-15T10:25:21.403Z,
"host" => "ubuntu",
"IPaddress" => "%{[server][ip]}",
"@version" => "1",
"Portname" => "%{[server][port]}",
"path" => "/home/user/microservice1logging/microservice1.log",
"type" => "java"
}
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.