Hello everyone, I am trying to send multiple sources to logstash, filter them by hostname and/or source ip and output them via syslog. I need the source ip to be retained. Does anyone have experience with this? So far my config looks like this...
input
{
syslog
{
host => "0.0.0.0"
port => 514
}
}
output
{
syslog
{
host => "170.77.102.38"
port => 514
}
}