Help in Logstash

Elastic Stack Logstash
1

Hi All,

I'm going to setup an elk stack to monitor logs.

We have 4 websphere servers and 4 IBM http servers.

Websphere Logs:
SystemOut.log
SystemErr.log

Http Server logs:
Access.log
Error.log
All these logs will be pushed via filebeat and process via Logstash and stored in Elasticsearch.

Based on the log type, we need to create filters and store in same index

Please help me.

Thanks,
Sridhar. B

2

What part do you need help with? How far have you come so far?

3

hi.. I want help in Logstash conf file..how to create a filters based on log type.

4

how to create a filters based on log type.

filter {
  if [type] == "whatever" {
    ...
  } else {
    ...
  }
}

See Accessing event data and fields | Logstash Reference [8.11] | Elastic.

5

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.