I searched a way to ship logs from one site to another using a single point of contact (a server using a VPN to connect to site B), let's see it this way :
Differents endpoints using Beats to ship logs to the server mentioned which itself will ship those logs to the Site B through the vpn to a logstash/elasticsearch server.
Endpoints Beats -> Server forwarding -> Site B logstash/elasticsearch server
One way I found was to put a logstash service on the server and directly ship the logs to the elasticsearch on site B.
Any idea or advice ? And excuse my google search skill if this has already been asked/answered !
Thank you for your reply, there is a network concerne here, that is why i want a server in the middle which has access to both networks.
I put Logstash on the server and used Lumberjack output to ship logs, it worked for one thing, but when it forwards Beats logs the format is lost somehow leaving it with only the message field.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.