I am trying to send some custome logs to elasticsearch but it seems filebeat is treating the content of the file as a single message while the file has many log entries. The file name syntax is as follows:
The filebeat conf is as follows, Please tell what I am doing wrong here?
filebeat.inputs: - type: log enabled: true paths: - F:\inetpub\logs\443\*.txt.* #include_lines: ['^ERR', '^WARN'] multiline.pattern: '^\2020-' multiline.negate: true multiline.match: after