HI,
Iam using filebeat as log shippper in client machines and Elk is also ready. My filebeat is sending all logs which contain error messsage and success message.
How to apply filter to receive only error message.
Have you read https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html?
Thanks for your reply Magnus
i read that it will use only if type of logs is 2 or 3
Iam having differnt logs like error, success,failure ,order logs, ...in same file, in this condition how to do...?
i read that it will use only if type of logs is 2 or 3
I don't understand.
Iam having differnt logs like error, success,failure ,order logs, ...in same file, in this condition how to do...?
The "Drop event example" section covers this.
You could also ship all events to Logstash and filter out boring messages there.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.