I am new to Elasticsearch, Kibana and Filebeats.
We have setup logbeat module for panos and panw.yml has following information:
- module: panw
panos:
enabled: true
var.syslog_host: 0.0.0.0
var.syslog_port: 514
We have defined only outputs on filebeats.yml . The problem is that I cannot see any service listening on port 514. I just cant get filebeat listening on the port. I tried changing port but that did not help.
filebeat test config and output ok.
Anyone encountered this before?