Hi
Need to send logs in this path /var/log/* on a client to elastic server.
which one more suitable for me? filebeat or logstash?
there are lots of log exist in this path with different name, I want to able to filter logs by name in kibana too (the same name as in the source)
need both search through aggregated logs or specific logs by name that exist in client.
Any idea?
Thanks
I'd use Filebeat.
Filebeat is the best possible way to pick your logs and send to Elasticsearch.
If your logs are structured, then you can directly send them to Elasticsearch. If not, then you can send logs via logstash for processing and then send them to Elasticsearch.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.