Monitoring in FileBeat 5.6

pksinghal · August 19, 2018, 12:09pm

Hi,
I am using ELK Stack 5.6.
In this version of a stack, I want to monitor filebeat using Elasticsearch.
One way is to add new filebeat what will scan filebeat log and send to elasticsearch.
Is there any other way to monitor ?

Jymit · August 20, 2018, 7:46am

@pksinghal
You want to send filebeat logs themselves to Elasticsearch?
Or
You want to ship other on disk logs via filebeat to Elasticsearch?

pksinghal · August 20, 2018, 9:08am

I want to send filebeat logs themselves to Elasticsearch?

Jymit · August 20, 2018, 10:53am

So within your filebeat configuration file under inputs.
e.g:

filebeat.inputs:
- type: log
  paths:
    - /var/log/system.log
    - /var/log/wifi.log
- type: log
  paths:
    - "/var/log/apache2/*"

Have your filebeat output log being read by filebeat itself?
Likewise, use the logstash file input:

input {
file {
path => "/var/log/system.log"
}
}
.
.

system · September 17, 2018, 10:53am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.