Hello, I just started ELK and I sucked in English.
I have installed ELK + filebeat + winlogbeat on Ubuntu Vm as suggested, but filebeat does not send log firewall to kibana. Can not create index pattern logstash and filebeat but can create index pattern winlogbeat
The winlogbeat is sent from the main OS.
How do I solve this problem?
please help me
filebeat.prospectors:
- type: log
enabled: false
paths:
- C:\system32\LogFiles\Firewall\pfirewall.log
#- c:\programdata\elasticsearch\logs\
Hi FIRST_Souharit,
Please set true above parameter and if you still getting error then please paste your logs here.
FIlebeat Logs /var/log/filebeat
Thanks,
Thanks for the help.
But it still does not work.
filebeat.prospectors:
- type: log
enabled: true
paths:
- /var/log/filebeat
#- c:\programdata\elasticsearch\logs\*Hi,
Could you please share the logs for further investigation.
Log Paths:
Thanks,
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.
