7,164
edits
Logstash cheat sheet: Difference between revisions
→Filebeat 設定
| Line 145: | Line 145: | ||
input_type: log | input_type: log | ||
document_type: syslog | document_type: syslog | ||
# default value 10m is too short. | |||
ignore_older: 24h | |||
# add host field for LSF comptibility. | # add host field for LSF comptibility. | ||
fields: | fields: | ||
| Line 155: | Line 157: | ||
input_type: log | input_type: log | ||
document_type: apache | document_type: apache | ||
# default value 10m is too short. | |||
ignore_older: 24h | |||
# add host field for LSF comptibility. | # add host field for LSF comptibility. | ||
fields: | fields: | ||
| Line 165: | Line 169: | ||
input_type: log | input_type: log | ||
document_type: apache-other-vhost | document_type: apache-other-vhost | ||
# default value 10m is too short. | |||
ignore_older: 24h | |||
# add host field for LSF comptibility. | # add host field for LSF comptibility. | ||
fields: | fields: | ||
| Line 175: | Line 181: | ||
input_type: log | input_type: log | ||
document_type: apache-error | document_type: apache-error | ||
# default value 10m is too short. | |||
ignore_older: 24h | |||
# add host field for LSF comptibility. | # add host field for LSF comptibility. | ||
fields: | fields: | ||
| Line 185: | Line 193: | ||
input_type: log | input_type: log | ||
document_type: dpkg | document_type: dpkg | ||
# default value 10m is too short. | |||
ignore_older: 24h | |||
# add host field for LSF comptibility. | # add host field for LSF comptibility. | ||
fields: | fields: | ||