Index documents daily from updated file

daaakeee · July 28, 2017, 4:52am

Hi there! I wanted to learn, how can I index documents daily from newer file

For example, I have file search_2017.07.27.log

input {
file {
path => ['/etc/logstash/elk_searchlogs/search_*']
start_position => "beginning"
type => "searchlog"
ignore_older => 0
}
}

I want The indexing to go the following way

File is uploaded to my server with djenkins
Then logstash takes this file and indexes it

Is it possible?

magnusbaeck · August 5, 2017, 7:53pm

So a new file ends up in the elk_searchlogs directory each day and is named after the day's date? Sure, that'll work just fine and is a pretty standard use case.

system · September 2, 2017, 7:53pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash not indexing new files Logstash	4	490	December 15, 2019
Update existing document Logstash	3	197	June 9, 2022
Logstash daily indexing? Logstash	4	238	August 13, 2019
Logstash daily indexing Logstash	3	319	April 18, 2018
Logstash cannot Index Log Files into Elasticsearch Logstash	4	373	January 2, 2022

Index documents daily from updated file

Related topics