Wrong data in Elasticsearch

Aniket_Pant · September 17, 2020, 6:06am

I have installed elk on linux server and winlogbeat on windows.I am using syslog input plugin but i
don't know why it is showing me winlogbeat data

input {
syslog {
port => 10514
host => "10.198.0.133"
}
}
output {

elasticsearch {
  hosts => "elasticsearch:9200"
  manage_template => false
  index => "syslog-%{+YYYY.MM.dd}"
  }
}

i've two server of linux one is client and other one is server i am sending client logs to server through syslog but it is showing me winlogbeat data

warkolm · September 17, 2020, 10:14pm

What is the output from a request to _cat/indices/syslog*?v?

system · October 15, 2020, 10:14pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.