Logstash output plugin syslog enquiry

peterch · March 5, 2018, 7:59am

Dear all,

I am trying to using plugin syslog to forward the log to other place instead of elasticsearch. But I find the log as follow

Mar 5 15:39:55 192.168.1.1 Mar 05 07:39:53 192.168.1.2 [-]: connect from localhost

The first second date and IP is the original host. May I know is it possible to remove the fist data and ip from the log or any other way to forward original log to other place?

Thanks

system · April 2, 2018, 7:59am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Removing fields from logstash output Logstash	4	1217	November 17, 2017
Logstash - Syslog input and output Logstash	1	400	February 27, 2018
Delete syslog fields from logstream Logstash	3	913	December 21, 2018
Syslog Preserve host Logstash	1	243	March 23, 2021
Logstash parsing syslog Logstash	8	3520	July 6, 2017

Logstash output plugin syslog enquiry

Related topics