Extract from ElasticSearch, into Kafka, continuously add any new ES updates using logstash

aniketdatir · March 21, 2023, 2:21pm

Hi Team,

My objective is to add latest ES index documents to kafka
Below is my logstash conf ->
'''
input {
elasticsearch {
hosts => ["IP"]
index => "Index_name"
query => '{"query":{"range":{"@timestamp":{"gte": "now-5m"}}}}'
}
}

output {
kafka {
codec => json
topic_id => "topic_name"
bootstrap_servers => "IP"
}
}
'''
it works. But everytime I run it added all the documents to kafka.
It should add only latest updates from index but not all.

Do i need to add date filter, or change the query part? Kindly assist how to do this?

system · April 18, 2023, 2:21pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash kafka topic as part of elasticsearch document_type Logstash	1	561	September 12, 2017
How to connect Elasticsearch to Kafka? Elasticsearch	4	541	October 25, 2018
Update record in Kafka-Elastic Pipelines through Logstash Logstash	1	115	December 29, 2023
Kafka input - resync missing items from topic Logstash	8	370	March 12, 2023
Logs are not ingesting to elasticsearch Elasticsearch	1	165	November 1, 2023

Extract from ElasticSearch, into Kafka, continuously add any new ES updates using logstash

Related Topics