How to design output section to receive all logs based on timestamp

Bob94 · August 14, 2019, 4:49pm

Hi guys

Let say from beat i have this below log naming

Record(timestamp).log
Record(timestamp).log
Complete Example for log file name: Record-20190814.log

And this log file will be created base on daily basis. Is there any idea how i can transport all this logs into elasticsearch ? How to design the output section in logstash so that the new daily index will be created ?
Any help is appreciated!

irobot678 · August 14, 2019, 7:59pm

In the output section of logstash :

output {
elasticsearch {
hosts => ["localhost:9200"]
index => "Record-%{+YYYY.MM.dd}.log"
}
}

Bob94 · August 15, 2019, 12:17am

Hi Vamsi_Vutukuri ,
Thanks for your respond. I will try to implement this and update here the result! Thanks and really appreciated!

Topic		Replies	Views
Logstash Elasticsearch Output into wrong index Logstash	1	365	June 20, 2019
Elastic not creating index daily based on date Logstash	13	2309	July 6, 2020
How to create daily Indices in elastic search 7.1.0? Elasticsearch	5	7216	September 11, 2019
Create a new index in elasticsearch for each log file by date Logstash	8	9594	July 6, 2017
How to tweak logstash -> elasticsearch indexing process Logstash	4	718	May 22, 2017

How to design output section to receive all logs based on timestamp

Related topics