Logstash Elasticsearch Output Plugin (Index)

jamesl · August 26, 2016, 6:31am

Hi.
In the following configuration I would like to name my index and document_type to have the 'type' field automatically put in instead of having to manually write it out.
Extract of output LS file:

} else if [type] == "wineventlog" {
elasticsearch {
hosts => ["els03","els04"]
sniffing => true
manage_template => false
index => "wineventlog-%{+YYYY.MM.dd}"
document_type => "wineventlog"

Thanks.

magnusbaeck · August 26, 2016, 7:35am

See https://www.elastic.co/guide/en/logstash/current/event-dependent-configuration.html#sprintf.

Topic		Replies	Views
Elasticsearch output without 'type' field Logstash	1	399	December 20, 2016
Logstash ES Output Plugin Logstash	1	252	May 30, 2019
Someone please clarify me on my configuration Logstash	7	589	May 25, 2017
Logstash output csv index name Logstash	5	618	May 14, 2018
Logstash type vs Elasticsearch type Logstash	1	342	December 6, 2018

Logstash Elasticsearch Output Plugin (Index)

Related topics