I have two docker containers running, docker.elastic.co/beats/filebeat:7.0.0 running Filebeat, and sebp/elk:latest running ELK stack. The goal is to have my nginx logs in Kibana.
The Filebeat container is sending the nginx logs to the ELK container using this yml file. The logs appear in Kibana, but there's still an unparsed message field.
I was under the impression that this config file is supposed to apply this pattern on the message field.
Does someone here know what might be going wrong and how to fix it?