i am capturing packets through tshark and send events to logstash through filebeat. My logstash sends only required data after filtering to elasticsearch but i am not receiving all the events at elasticsearch. what are the required parameters i need to configure so that my logstash sends all the events to elastic search
can anyone help me with this
Thanks
And i see docs.count every time i insert the data. why es is deleting the records and how to handle it
And what does your Logstash pipeline configuration look like?
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.