Hi! I would like to know if I could output to a different elasticsearch index based on my logs source field? In the sources I have unique identifiers and I would like to make indexes with these identifiers.
Yes, just reference the field name in the elasticsearch output's index option.
Also:
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.