Well, Hello everybody,
Actually, I'm working with Netflow protocol and have been working fine.
But, i would like work with Syslog too.
In my case i have some routers Cisco , i get data from Netflow protocol and show it on Kibana.
I'm not nothing sure, How i can configure it.
IF someone could help me to understand... because I don't how well is work.
~¿What i need?
¿I need configure protocol in logstash how in my Router?
-¿Is configuration similar to Netflow?
-¿I need a new template?
Logstash has a set of plugins you can download for that. I guess you are using the Netflow codec plugin to manage the Netflow information. So, there is this one for syslog https://www.elastic.co/guide/en/logstash/current/plugins-inputs-syslog.html. You only have to edit the settings file that your Logstash uses to receive and send info to elasticsearch
I am not so sure of it. I know Metricbeat is useful to send metrics from a system and its services to Elasticsearch, but I am not sure if it will work for your Cisco routers.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.