Hi All,
I'm going to setup an elk stack to monitor logs.
We have 4 websphere servers and 4 IBM http servers.
Websphere Logs:
SystemOut.log
SystemErr.log
Http Server logs:
Access.log
Error.log
All these logs will be pushed via filebeat and process via Logstash and stored in Elasticsearch.
Based on the log type, we need to create filters and store in same index
Please help me.
Thanks,
Sridhar. B
What part do you need help with? How far have you come so far?
hi.. I want help in Logstash conf file..how to create a filters based on log type.
how to create a filters based on log type.
filter {
if [type] == "whatever" {
...
} else {
...
}
}
See Accessing event data and fields | Logstash Reference [8.11] | Elastic.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.