If conditional with multiple outputs

davidbien · April 24, 2019, 11:04am

This is my current config:

input {
  redis {
    host => "elasticsearch-logs.d3cexb.0001.euw1.cache.amazonaws.com"
    port => 6379
    key => "filebeat"
    data_type => "list"
  }
}

output {
  if "nginx_access" in [type] { 
     elasticsearch { 
        pipeline => "weblog_combined"
    }
  }
  if "nginx_access" in [type] {
     elasticsearch {
        pipeline => "weblog_nginx_error"
    }
  }
  elasticsearch {
    hosts => ["https://search-zego-es-56ebnsnz55kywk62l53h7kz6dq.eu-west-1.es.amazonaws.com:443"]
    index => "filebeat-%{+YYYY.MM.dd}"
   }
  tcp {
    host => "listener.logz.io"
    port => 5050
    codec => json_lines
   }
}

What I want to get to work is to send all logs to the tcp endpoint(regardless of type) and if log is of type in if statement then send it to a pipeline in elasticsearch. If log is not of type specified in if statements then still send it to elasticsearch as it is.

Topic		Replies	Views
Use a conditional into another one Logstash	3	333	September 30, 2019
Pipelines or "if else" conditions for output Logstash	13	16067	April 26, 2018
Clarification on if/else behavior in output Logstash	3	441	October 21, 2019
Condition statements output Logstash Logstash	3	254	May 21, 2020
If condition not working in logstash output Logstash	9	5726	September 21, 2018

If conditional with multiple outputs

Related topics