Hello,
I've just installed my first ELK stack and I create an index called logstash-. I also created a new one called ipalogs- using the following output configuration:
output {
elasticsearch { hosts => ["10.34.192.61:9200"]
index => "ipalogs-%{+YYYY.MM.dd}" }
I can also see the index in Elasticsearch:
green open ipalogs-2017.06.16 _4WjUPcCSmqQspYf3IHQSw 5 1 11554013 0 10.4gb 5.3gb
I can add the ipalogs-* into kibana BUT it is showing the same data or logs as the logstash-* index instead of the logs I wanted from FreeIPA in the ipalogs-* index.
Please let me know if there is any other information I can send to better assist and thank you in advanced for any and all help!
Thank You!