Hello,
In logstash filter the condition if [type] == "syslog" is always false because the value of type is log.
You must change this row per if [fields][type] == "syslog" and set up enabled to True not False
Hello,
In logstash filter the condition if [type] == "syslog" is always false because the value of type is log.
You must change this row per if [fields][type] == "syslog" and set up enabled to True not False
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.