q rootttttt
Hi @AkankshaSS
@leandrojmp and I are trying to give you direction / help ...
But That above is not a logstash configuration file that is a rsyslog.conf file I believe... that is where the formatting etc of the data is happening before it goes to logstash.
You need to find your rsyslog expert and have them help you, this has nothing to do with logstash or elasticsearch you need to work with the person that created that file and have them fix it so you get the remote IP.
We can not really help you with this... you need to get that fixed by someone that knows rsylsog.. perhaps try that forum.
Also please do not ask people to log into your application / cluster this is a public forum.
Good Luck!
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.