I installed Filebeat, Elasticsearch, and Kibana 8.4.1 in ubuntu
I collect FortiGate logs with Integration of Fortinet, in the "discover" the name of the index is filebeat-* and I want to name it FortiGate like this example in the screenshot to facilitate the work with it how?
I haven't try for filebeat-*, but should work if you go to:
Stack Management-> Data views -> In right top corner there is Edit, rename Name to FortiGate.
filebeat-* keeps data for all logs received by filebeat including modules.
1 Like
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.