In the documentation https://www.elastic.co/guide/en/beats/winlogbeat/current/configuration-logging.html
there is a configuration option:
logging.to_syslog
When true, writes all logging output to the syslog.
while there isn't a description about how to configure the output destination address and port. Any one can show me how?
I've followed the code path of the to_syslog option and this feature should only work under unix system, if you use that under windows you should see the following error in your log.
syslog is not supported on this OS
I will create an issue to remove that documentation in windows.
In your case I think you might want to use the 'to_eventlog' option to send events to the events log.
I'm looking for options to send log to syslog. Any idea? I overheard some kind of output plugin. Is that possible?
@Nickname_Yu The option you were referring was to send Winlogbeat own logs to Syslog. It that the goal you were trying to achieve OR you want to send all the events read from Winlogbeat to a Syslog server?
I want to send all the logs to syslog
@Nickname_Yu currently Winlogbeat or any beats don't have any direct output to Syslog, we support the following outputs:
If you really want to send all your events to syslog, I think you have the following options:
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.