i am capturing packets through tshark and send events to logstash through filebeat. My logstash sends only required data after filtering to elasticsearch but i am not receiving all the events at elasticsearch. what are the required parameters i need to configure so that my logstash sends all the events to elastic search
can anyone help me with this
Thanks
And i see docs.count every time i insert the data. why es is deleting the records and how to handle it
And what does your Logstash pipeline configuration look like?