Elasticsearch Setup Custom Index and Write Issue

elk-siwm · March 9, 2023, 8:28am

Elasticsearch get logs via filebeats shipper default settings. All custom index settings were configured on /etc/filebeats/filebeats.yml file. This is my configuration file:

output.elasticsearch:
  # Array of hosts to connect to.
  hosts: ["host-ip:9200"]
  protocol: "https"
  index: "samba-%{[agent.hostname]}-%{[agent.version]}-%{+dd.MM.yyyy}"
  # Authentication credentials - either API key or username/password.
  username: "elastic"
  password: "password"
  ssl:
    enabled: true
    certificate_authorities:
      - |
        -----BEGIN CERTIFICATE-----
       XXX
        -----END CERTIFICATE-----

setup.template:
  name: "samba"
  pattern: "samba-%{[agent.version]}"
  overwrite: true

setup.ilm.enabled: false

When the filebeat setup command was run, "no matching index template found for data stream [samba]" exception was thrown, although this custom index template was created on ELK . After start the filebeat service, all logs were collected on default index (.ds-filebeat-8.6.2-2023.03.09-000001). How can i fix this?

system · April 6, 2023, 8:29am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Unable to do `filebeat setup ...` for custom `filebeat` index name Beats filebeat	2	422	February 17, 2022
Custom index not getting created in Kibana Kibana	6	232	December 25, 2023
Create custom index while sending logs from filebeat to elasticsearch Beats filebeat	1	244	December 22, 2022
Filebat - Create a custom index on elasticsearch Beats filebeat	14	4697	October 23, 2019
Setup filebeat to send different logs to different indexes (to elasticsearch) Elasticsearch	1	201	August 15, 2023

Elasticsearch Setup Custom Index and Write Issue

Related Topics