Identify syslog message and filter it

I want identify log messages received from syslog based on a regex pattern to tipify them and send to my logstash.

For e.g.: logs with 'SECURITY' will be send with[type] = 'security' while logs with 'SYSTEM' will be send with[type] = 'system'

How can I achieve that with beats receiving those logs and sending to logstash?

By the way, currently I'm looking at processors' documentation. Am I on the right path?

I think I found a comment that will help.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.