Hi all,
I use logstash 6.2.3 and I'd like to connect my LibraESVA 4.3 to Logstash, but I don't understand how to setup the filter for this software.
Any idea?
Thanking in advance.
Giuliano
A standard syslog input configuration should be a good starting point. There's an example in the Logstash documentation (https://www.elastic.co/guide/en/logstash/current/config-examples.html#_processing_syslog_messages). That said, the port 514 requirement is problematic since you'd have to run Logstash as root (not a good idea) or use tricks to have it listen on port 514. That matter has been discussed in that past.