Hi,
Is it possible to send the Nagios event/log (not local log) to logstash for index and store to elasticsearch?
I found some plugin but I am not sure are they work.
I found the followings:
http://logstash.net/docs/1.4.2/inputs/file
http://logstash.net/docs/1.4.0/outputs/nagios
http://logstash.net/docs/1.4.2/outputs/nagios_nsca
Thanks for your answer.
Not sure what you mean by the event log? Logstash's grok parse filters have some nagios filers built in, you should be able to parse your nagios.log file just by using the defualt file input, although there is a lot of customization you can do on top of that.
The outputs are to send TO Nagios (or NSCA), for instance if you want to make a specific log entry trigger an alert.
Thanks for prompt reply.
Yes, I found the nagios.log file.
Is this plugin? http://logstash.net/docs/1.4.2/filters/grok
It seems to understand easily!