We have some duplicated log entries and would like to exclude a particular log file. There is an 'exclude_files:' directive in the .yml config file, but we are having difficulty making that work.
Question: Is this directive working?
To exclude a file named: badfile.log what would a proper regex be?
How long after restarting filebeat would you expect the file to NOT appear in Kibana/Elasticsearch?
We have tried (with stopping/starting filebeat between each iteration):
and a few others.