Logstash: Sent formatted metrics to an Elasticsearch index

pkaramol · November 2, 2018, 8:13am

I am able to capture some metrics in stdout from events in logstash using the relevant plugin as follows:

in my filter file:

  if "somekeyword" in [tags] {
    metrics {
      meter => "events_somekeyword"
      flush_interval => 60
      add_tag => "metric_somekeyword"
    }
  }

in my outputs file

if "metric_somekeyword" in [tags] {
        stdout {
          codec => line {
            format => "Time: %{+YYYY-MM-dd HH:mm:ss Z} | Metric: rate 1m | Client: SomeKeyword | Rate: %{[events_somekeyword][rate_1m]}"
          }
        }

My question is how to translate the exact same operation / formatting in terms of elasticsearch output so that the results are appropriately indexed in my elasticsearch instance.

system · November 30, 2018, 8:14am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash not capturing metrics Logstash	1	291	December 6, 2018
Metrics filter out to Elasticsearch Logstash	4	902	July 6, 2017
Logstash metrics Logstash	3	509	April 17, 2017
ELK stack and additional CloudWatch output Logstash	5	1472	July 6, 2017
Using metric with dynamic field names Logstash	3	997	July 6, 2017

Logstash: Sent formatted metrics to an Elasticsearch index

Related topics