Hi @stephenb!
Thank for comment.
My version is ELK 8.6.1.
how you set up the Custom Logs integration
Integrations > Custom logs > Add Custom Logs integration >
Custom log file = /opt/nsm/* (path where all my csv stores)
Processors =
{
"csv": {
"field": "message",
"target_fields": ["Score", "Source IP", "Destination IP", "Connections", "Avg. Bytes", "Total Bytes", "TS Score", "DS Score", "Dur Score", "Hist Score", "Top Intvl"]
}
}
how did you do specify the ingest pipeline.?
I modify logs-log.log@custom
And it linked to my elastic agent and host
I didn't do anything more. Maybe I miss something? I'm new to ELK.