I just installed beats with the most recent versions of ELK. my beats.yml is as shown in the example in the docs. top beat is running and i can see it going through logstashwhen I tail the logstash logs. Its the matter of logstash shipping them to ES.
input {
beats {
port => 9074
}
}
output {
elasticsearch {
hosts => ["http://IP:9200"]
index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}"
}
}
this is my logstash config.
Any help would be great!
Thanks