Hi,
I am trying to send some custome logs to elasticsearch but it seems filebeat is treating the content of the file as a single message while the file has many log entries. The file name syntax is as follows:
F:\inetpub\logs\443\IMAS_RequestLogger2.txt.20200325-15
The filebeat conf is as follows, Please tell what I am doing wrong here?
filebeat.inputs:
- type: log
enabled: true
paths:
- F:\inetpub\logs\443\*.txt.*
#include_lines: ['^ERR', '^WARN']
multiline.pattern: '^\2020-'
multiline.negate: true
multiline.match: after