Hello.
If I just install "Elasticsearch", "Kibana" and "Logstash" then can I use "Winlogbeat" on a Windows OS for forward evetlogs to my elastic box? In Elastic box I configured Syslog-NG.
Thank you.
Winlogbeat can ship directly to Elasticsearch. And Kibana can then be used to visualize the data stored in Elasticsearch. Logstash isn't required if configure Winlogbeat to write directly to Elasticsearch. Logstash is only needed if you want to modify or enrich the data from Winlogbeat before writing it to Elasticsearch.
U used a guidance like "https://www.digitalocean.com/community/tutorials/how-to-use-logstash-and-kibana-to-centralize-logs-on-centos-7" !!!
You can following the Winlogbeat Getting Started Guide to get started.
If your previous message was a question, then please clarify.
This topic was automatically closed after 21 days. New replies are no longer allowed.