Logstash file input plugin picks different files other than specified path

Neelam_Zanvar · May 3, 2023, 6:42am

Hi , I am using the file input plugin , here is my config

nput {
    file {
            type => "tomeeaccess_passport"
            path => "/etc/logstash/logs/localhost_access_log..2023-04-20.txt"
            start_position => beginning
            #sincedb_path => "/opt/logstash/sincedb-access"
    }
}
output {
    elasticsearch {
            hosts => "http://elastic_ip:9200"
            user => "elastic"
            password => "pwd"
            index => "access_passport%{+YYYY.MM.dd}"
    }
}

When i check the logs in ths index i am getting logs from /var/logs/httpd and /var/log/messages and /var/log/syslog I don't even have httpd on this machine. i Dont know how it is accessing that. I There is not even a single entry from specified path

system · May 31, 2023, 6:43am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash file input plugin Logstash	3	163	May 31, 2023
File Input is picky! Logstash	2	728	July 6, 2017
File input does not work with anything in "/var/log/elasticsearch/" Logstash	1	244	July 29, 2019
Input File Path ignores directories and gathering all the files Logstash	3	256	March 18, 2019
Import settings for a Input plugin from an external file Logstash	5	596	May 24, 2018

Logstash file input plugin picks different files other than specified path

Related topics