Multiple JDBC input for different tables and output into separate indexes

Youdeep · July 29, 2023, 2:00pm

Hello I'm new to ELK. Question -
How do I use different index when importing tables from DB using logstash. I have used multiple JDBC input for different tables and separate output for each table in logstash. Logstash shows correct last timestamp for each table/input, but Kibana/Elasticsearch display all combined data for all tables.

Code is like this:
input {
jdbc {
table1
}

jdbc {
table2
}

filter {
mutate {table1_col}
mutate {table2_col}
}

output {
elasticsearch {
index => "table1"
}

elasticsearch {
index => "table2"
}
}

Rios · July 31, 2023, 7:58am

Welcome to the community.

You can add type or tags in input and based on that, add IFs.

input {
  jdbc {
   table1
   type=>"table1"
  }

  jdbc {
   table2
   type=>"table2"
  }
}
output {
if [type]=="table1"{
  elasticsearch {
   index => "table1"
  }
 }
 if [type]=="table2"{
  elasticsearch {
    index => "table2"
  }
 }
}

system · August 28, 2023, 7:59am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Multiple tables as input. Multiple pipelines? Logstash	5	1735	April 4, 2018
Logstash jdbc multi input Logstash	4	2158	March 14, 2017
Use more than one table with different indexes in logstash Logstash	3	1065	February 13, 2017
Multiple inputs to multiple indices Logstash	4	2978	January 5, 2022
Logstash fetching data from multiple MySQL databases Logstash jdbc	1	346	November 16, 2023

Multiple JDBC input for different tables and output into separate indexes

Related topics