As the path contains backslashes, they have to be enclosed between single quotes (var.paths: ['C:\AppServ\Apache24\logs\access.log*'] or escaped (with double backslash \\).
Hi @jsoriano Thanks for your help, i think it works now because there is no error when i run filebeat setup. But in the Kibana Dashboard and Discover menu i do not see any logs coming in, i already triggered a lot of logs into my dummy website.
Where to check whether filebeat already sent the logs to the cloud or failed in reading the logs?
Now i can get it work, the next problem is that Kibana or Elastic ( i am not sure which one) changed my timestamp into their timezone like seen below. Where is the configuration to make elastic/kibana stick into my logs timestamp?
Already set var.convert_timezone to true and in the kibana i got beat.timezone field is added, but the conversion to UTC is not made, i am running the latest elasticsearch, kibana and filebeat
Any additional configuration i missed?
Should i add var.convert_timezone in every modules that i enabled? i just tried in system modules only
Kibana shows dates in the timezone of your browser by default, you can see the @timestamp value really stored in elasticsearch looking at the JSON tab.
You can change the timezone kibana uses with the dateFormat:tz setting in the Advanced Settings in the management tab.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
