Logstash - Syslog Output - Custom message

Nandhini_Viswanathan · May 16, 2023, 4:18pm

Hi,
I'm I working with Logstash - Syslog Output and I've found ~~out~~ problem with ~~setting~~ custom field message. I'm using Elasticstack 7.8.0.

I've installed logstash syslog-output plugin.

/usr/share/logstash/bin/logstash-plugin install logstash-output-syslog

Logstash configuration:

 output {
    syslog {
        host => "localhost"
        sourcehost => "logstash-other-as1"
        port => 10514
        protocol => "tcp"
        message => "testing message"
        #message => "%{custom-message}"
        appname => "apptest"
      }
}

I'm storing all received data to Elasticsearch DB to review them. Data (Document in Kibana) looks like:

<13>Jul 13 13:41:11 logstash-other-as1 apptestopttest[-]: 2020-07-13T13:41:11.000Z %{host} %{message}

I was using the same configuration on ES stack 6.3.2 and it worked well~~worked~~.
Does anyone know how to resolve this issue?

system · June 13, 2023, 4:18pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash - Syslog Output - Custom message Logstash	1	203	June 14, 2023
Logstash - syslog output Logstash	9	2635	June 28, 2022
No Output shown on kibana Kibana	3	371	March 21, 2022
Logstash cmd displaying wrong output Logstash	1	212	March 11, 2022
Parse "message" field on Syslog Logstash	4	1368	March 28, 2021

Logstash - Syslog Output - Custom message

Related Topics