Hello,
Is it possible in the same filebeat configuration to tell filebeat to send some logs (prospectors) directly to elasticsearch (mysql, nginx) AND some other logs to logstash ?
Because some log formats can directly be managed by filebet and elasticsearch, and some others need to have custom Logstash filters before being sent to Elasticsearch.
Thanks
There are some github issues for this (https://github.com/elastic/beats/issues/3120) but this is currently not possible. Our recommendation here is two use 2 instance of Filebeat.
Ok That's what I thought !
Thx !
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.