Hello,
I am having trouble sending my logs from one machine (pc A) to another (pc B). As a preface I want to say that I am very new to the ELK stuff, so hopefully I provide all the needed info.
PC A has Kibana, Elasticsearch, Filebeat, and winlogbeat installed and to my knowledge are working.
PC B has winlogbeat installed and configured to send to pc A all the events. However, when I go to Kibana on pc A, none of the logs seem to be there. I am able to search for pc A in the logs and find it, but pc B does not show up.
Config for pc B winlogbeat below.
Any thoughts or ideas would be so helpful!
winlogbeat.event_logs:
- name: Application
- name: Security
- name: System
output.elasticsearch:
hosts:
- 192.168.16.159:9200
setup.kibana:
host: "192.168.16.159:5601"
logging.to_files: true
logging.files:
path: C:\ProgramData\winlogbeat\Logs
logging.level: info