version 6.3 for the entire ELK Stack
hello! i am trying to exclude all access files from filebeat but am having trouble with the syntax.
i am allowing all of the files because i have multiple folders with the same structure and different names:
but am also trying to exclude the access files:
Please view my filebeats.yml file below:
filebeat.inputs: # Each - is an input. Most options can be set at the input level, so # you can use different inputs for various configurations. # Below are the input specific configurations. - type: log # Change to true to enable this input configuration. enabled: true # Paths that should be crawled and fetched. Glob based paths. paths: #- /var/log/*.log #- /var/log/secure #- /var/log/messages - /opt/*/tomcat/logs/* - /usr/share/apache-tomcat-8.0.28/logs/catalina.* #- c:\programdata\elasticsearch\logs\* exclude_files: - /opt/*/tomcat/logs/access*
It is possible that my path overrides my exclude... what would be the correct way to exclude a file within the folder i have included all (*)?