Shipping Logs out of Elasticsearch

secopsgeek · October 4, 2022, 2:20pm

Morning,

I am trying to figure out a way to ship my elasticseach logs from one location to another syslog system. Is there a way for me to configure Elastic to handle shipping out a certain Index of log to another syslog server?

Thanks

leandrojmp · October 4, 2022, 2:22pm

You need something that would read from elasticsearch and ship to another place.

Logstash can do that.

secopsgeek · October 4, 2022, 2:23pm

I have Logstash, would it be able to ship to a syslog server on port 514 to another system?

Rios · October 4, 2022, 2:58pm

You have to use syslog plugin

secopsgeek · October 4, 2022, 3:09pm

Got it thanks.

system · November 1, 2022, 3:09pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Can logstash replace local syslog server? Logstash	2	331	March 20, 2019
Ship logs from appliances in form of syslog Logstash	5	687	July 6, 2017
Can Elasticsearch forward syslogs? Elasticsearch	7	4141	July 5, 2017
Rsyslog and Logstash production setup Logstash	4	543	July 6, 2017
Rsyslog to logstash help Logstash	4	1365	December 17, 2017

Shipping Logs out of Elasticsearch

Related topics