Hi all,
A little new to the ELK stack and syslog in general and have questions.
I want to make it as simple as possible for my folks to search inside ELK.
In my case I have a multiple datacenters and different technology stacks.
What I want to do is have a list of servers (somewhere) and tag them as
they are coming into Logstash so it’s easier for folks to search/me to
create dashboards.
Loc1Myhost1 - Add Tags [Loc1] [Applicaiton1] [SQLServer]
Loc1Myhost2 - Add Tags [Loc1] [Applicaiton2] [WebServer]
Loc2Myhost7 - Add Tags [Loc2] [hypervisor1] [SQLServer]
Loc3Myhost9 - Add Tags [Loc3] [Hypervisor2] [WebServer]
I’ve been looking at the filter mechanism and don’t see any good examples
of how this might be accomplished. Or am I doing this the hard way?
Thanks,
--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/151bab47-a1b2-4609-b712-0b825326affa%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.