I currently use logstash to stream logs from Elasticsearch to an syslog connector on a schedule (say 5mins). Every 5 mins logstash runs and grabs events in the index then fires them off to the syslog output.
Input (Elasticsearch)
Output (Syslog TCP)
Doing this with this schedule means there might be events missing in between runs (and this has happened a few times). I'm wondering if there is any built in streaming plugin or any other suggestions folks in this community have tried. Thanks in advance.