What is the correct method to get logs to the filebeat haproxy module? I see it is running udp syslog on port 9001 so I just added
log 127.0.0.1:9001 local0 notice
under the global section, but it looks like it is not expecting syslog type logs with facility/priority?
<133>Dec 6 00:27:54 haproxy: Health check for server succeeded, reason: Layer7 check passed, code: 200, info: "OK", check duration: 8ms, status: 3/3 UP.
Provided Grok expressions do not match field value: