Logstash cheat sheet: Difference between revisions

Logstash cheat sheet (view source)

Revision as of 11:45, 20 November 2015

401 bytes removed , 20 November 2015

→‎Filebeat 設定

Nxhack

Bots, Bureaucrats, Administrators

7,164

edits

@@ Line 132: / Line 132: @@
 :: logstash-input-beats 2.0.2 で対応。とのことだが動いなさそう。確認する。
-'''logstash filter で LSF 互換を保つ'''
+'''logstash-input-beats がちゃんとうごくまでは logstash filter で LSF 互換を保つ'''
 <syntaxhighlight lang="javascript" enclose="div">
 filter {
@@ Line 157: / Line 157: @@
 </syntaxhighlight>
-'''filebeat.yml で host field 追加するパターン'''
+'''filebeat.yml 例'''
 <syntaxhighlight lang="yaml" enclose="div">
 ############################# Filebeat ######################################
@@ Line 173: / Line 173: @@
        # default value 10m is too short.
        ignore_older: 24h
-      # add host field for LSF comptibility.
-      fields:
-        host: MyHostname
        fields_under_root: true
@@ Line 185: / Line 182: @@
        # default value 10m is too short.
        ignore_older: 24h
-      # add host field for LSF comptibility.
-      fields:
-        host: MyHostname
        fields_under_root: true
@@ Line 197: / Line 191: @@
        # default value 10m is too short.
        ignore_older: 24h
-      # add host field for LSF comptibility.
-      fields:
-        host: MyHostname
        fields_under_root: true
@@ Line 209: / Line 200: @@
        # default value 10m is too short.
        ignore_older: 24h
-      # add host field for LSF comptibility.
-      fields:
-        host: MyHostname
        fields_under_root: true
@@ Line 221: / Line 209: @@
        # default value 10m is too short.
        ignore_older: 24h
-      # add host field for LSF comptibility.
-      fields:
-        host: MyHostname
        fields_under_root: true