logstash处理流程
logstash处理流程
logstash配置-Input 和output-官方例子logstash-sample.conf
caizhigui@czg-ThinkPad-ubuntu:~/elasticsearch/logstash-7.2.0$ cat config/logstash-sample.conf
# Sample Logstash configuration for creating a simple
# Beats -> Logstash -> Elasticsearch pipeline.
input {
beats {
port => 5044
}
}
output {
elasticsearch {
hosts => ["http://localhost:9200"]
index => "%{[@metadata][beat]}-%{[@metadata][version]}-%{+YYYY.MM.dd}"
#user => "elastic"
#password => "changeme"
}
}
logstash配置-标志输入stdin-官方例子logstash-czg_stdin.conf
标准输入例子
标准输入例子-结果
处理流程--Filter配置
image.png
处理流程--Filter配置-Grok示例(正则表达式)
image.png
网友评论