Logstash Configuration doubts

Balamurali · October 11, 2017, 9:01am

Hi All,

We are working on Indexing system logs ( nagios log ) to Elasticsearch using logstash.
We have two basic doubts on this .

We are going to parse nagios log to logstash for every minute,
For this every minute , we need to send whole nagios log to logstash , then there is duplicate issue for all records expect new lines in log.
How to overcome this issue?
which filter is flexible for this nagios log parsing , please suggest us!!

Please Help on this and Thanks in Advance

magnusbaeck · October 15, 2017, 7:47pm

For this every minute , we need to send whole nagios log to logstash

Why? It doesn't appear to make any sense.

system · November 12, 2017, 7:47pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.