Hello all! I've tried doing the best I can and research on my issue, however everything i've tried and research doesn't seem to work
Was hoping somebody on here might be able to help me out.
I have a very simple webserver(remote) using nginx and filebeats(6.1) to ship the logs directly to ES/Kibana(6.1) box in my network.
The logs are getting there just fine, I just simply want to reduce some of the logs that are sent, as they are junk/filler logs that I do not want to parse/store in ES.
Below is an example of the nginx line i want to exclude
xxx.xxx.xxx.xxx - - [27/Dec/2017:05:57:06 -0500] "GET /feedback/user HTTP/1.1" 200 824 "https://website/page" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36"
Below is my nginx.yml config
- module: nginx access: enabled: true var.paths: - /var/log/nginx/access.log exclude_lines: ['feedback'] error: enabled: true var.paths: - /var/log/nginx/error.log
Is there something that I am missing?