here is my filebeat.yml config:
/ ###################### Filebeat Configuration Example #########################
/ # This file is an example configuration file highlighting only the most common
/ # options. The filebeat.reference.yml file from the same directory contains all the
/ # supported options with more comments. You can use it as a reference.
/ #=========================== Filebeat prospectors =============================
filebeat.prospectors:
/ # Each - is a prospector. Most options can be set at the prospector level, so
/ # you can use different prospectors for various configurations.
/ # Below are the prospector specific configurations.
- type: log
/ # Change to true to enable this prospector configuration.
enabled: true
/ # Paths that should be crawled and fetched. Glob based paths.
paths:
- c:/temp/log/.log
/ # - /var/log/.log
/ #- c:\programdata\elasticsearch\logs*
/ #============================= Filebeat modules ===============================
filebeat.config.modules:
/ # Glob pattern for configuration loading
path: ${path.config}/modules.d/*.yml
/ # Set to true to enable config reloading
reload.enabled: false
/ # Period on which files under path should be checked for changes
/ #reload.period: 10s
/ #==================== Elasticsearch template setting ==========================
setup.template.settings:
index.number_of_shards: 3
/ #index.codec: best_compression
/ #_source.enabled: false
/ #============================== Kibana =====================================
setup.kibana:
/ # Kibana Host
/ # Scheme and port can be left out and will be set to the default (http and 5601)
/ # In case you specify and additional path, the scheme is required: http://localhost:5601/path
/ # IPv6 addresses should always be defined as: https://[2001:db8::1]:5601
host: "localhost:5601"
/ #================================ Outputs =====================================
/ # Configure what output to use when sending the data collected by the beat.
/ #-------------------------- Elasticsearch output ------------------------------
output.elasticsearch:
/ # Array of hosts to connect to.
hosts: ["localhost:9200"]
/ # Optional protocol and basic auth credentials.
/ # protocol: "https"
username: "elastic"
password: "elastic"
/ #----------------------------- Logstash output --------------------------------
/ #================================ Logging =====================================
/ # Sets log level. The default log level is info.
/ # Available log levels are: error, warning, info, debug
logging.level: debug
/ # At debug level, you can selectively enable logging only for some components.
/ # To enable all selectors use [""]. Examples of other selectors are "beat",
/ # "publish", "service".
/ #logging.selectors: [""]