Hi,
Is it possible to send windows event logs with winlogbeats direct to logstash syslog service (or other syslog servers udp/tcp 514)?
I can't find how to specifiy the server hostname/ip. Only how to enable logging syslog.
https://www.elastic.co/guide/en/beats/winlogbeat/current/configuration-logging.html
logging.to_syslog: true
Thanks in advance!
You send the data directly to Logstash using the Logstash output. But you cannot send the output via syslog. Beats support outputting to Elasticsearch, Logtash, Kafka, and Redis.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.