Index pattern issues

Bakkali_Amine · March 1, 2018, 11:10am

when adding codec = jason_lines can't add an index in elasticsearc

Eswar_Kumar_Musiboin · March 1, 2018, 11:17am

there is no Jason_lines codec plugin in logstash. U mean json_lines plugin?

Bakkali_Amine · March 1, 2018, 11:29am

yes
this is my config :
input {
file {
path => "/var/ossec/logs/alerts/alerts.log"
tags => ["ossec"]
codec => json_lines
}
}
output {
if "ossec" in [tags] {
elasticsearch {
hosts => ["localhost:9200"]
index => "ossec-%{+YYYY.MM.dd}"
}
}
}

Eswar_Kumar_Musiboin · March 1, 2018, 11:31am

for file input use codec => json instead codec => json_lines.

Check this link: https://www.elastic.co/guide/en/logstash/6.0/plugins-codecs-json_lines.html#_description_150

to process file input, its suggestible to use json codec. Ping error if any further.

Topic		Replies	Views
Logstash not indexing the input data to elastic search Logstash	5	2165	July 6, 2017
How to configure logstash to index json logs including all fields Logstash	6	5038	July 6, 2017
Elasticsearch / Logstash isnt indexing all lines of json file Logstash	1	306	March 6, 2020
Logstash config not creating an index in elasticsearch Logstash	7	559	September 18, 2019
Unable to create elasticsearch indices for json file Logstash	1	369	October 9, 2019

Index pattern issues

Related topics