Stack Overflow
Stack Overflow

Questions tagged [logstash-file]

Logstash File Input stream events from Files

221 questions
1
vote
1 answer

cant config logstash to postgres

im not able to config my logstash-2.3.2 with my postgresql-9.5.4-1-windows-x64. here's is my log-config.conf file input { jdbc { # Postgres jdbc connection string to our database, mydb jdbc_connection_string =>…
Pranil Ambule
  • 29
  • 6
1
vote
0 answers

How to add new field under logstash filter with ruby?

I need help on how to add new field via ruby under a filter, and finally output it to a file. Can anyone advise me ? Thank You. input { file { type => "syslog" path => "/opt/logstash/log/dns.log" start_position => beginning …
user647527
  • 289
  • 2
  • 3
  • 15
1
vote
2 answers

Logstash input filename as output elasticsearch index

Is there a way of having the filename of the file being read by logstash as the index name for the output into ElasticSearch? I am using the following config for logstash. input{ file{ path => "/logstashInput/*" } } output{ …
Topher Brink
  • 329
  • 2
  • 13
1
vote
1 answer

Reading a log file from given path using logstash

input { file { path => ["D:/logstash-2.3.4/temp/logs/localhost_access_log.2016-08-24.log"] start_position => "beginning" } } filter { date { match => [ "timestamp" , "dd/MMM/yyyy:HH:mm:ss Z" ] } } output { stdout {…
keerthi
  • 11
  • 1
  • 3
1
vote
2 answers

How do I connect to cockroachDB through JDBC from logstash output plugin?

I am using logstash to create a pipeline from Postgres to CockroachDB. Below is the config. The input plugin(source is postgres) is working fine. But I am unable to establish a connection in the output plugin(cockroachDB) using JDBC. I am facing the…
ashivan
  • 23
  • 8
1
vote
1 answer

Logstash : Parsing fails while parsing Json data received through web service like twitter / facebook etc

I am receiving the Web service data say from Twitter and logging to file and there after I need to send that data to Logstash so as same can be indexed to Elasticsearch. I am using below config and that is giving jsonparsefailure with exception as…
Prashant Agrawal
  • 381
  • 3
  • 14
1
vote
0 answers

Bad File descriptor error with Large dictionary file (>10MB) in Logstash

I have multiple log messages in a file which I am processing using logstash filter plugins. Then, the filtered logs are getting sent to elasticsearch. There is one field called addID in a log message. I want to drop all the log messages which have a…
User24
  • 21
  • 2
1
vote
1 answer

How to send only error logs via logstash shipper

I am using Logstash to output JSON message to an API. I am reading logs from a log file. My configurations are working fine and it is also sending all the messages to the API. Following is the sample log file: Log File: TID: [-1234] []…
omer khalid
  • 855
  • 1
  • 12
  • 39
1
vote
2 answers

Logstash not reading file input, not printing to console

New to logstash. I am trying to read a simple input and output it to command window. Logstash version: 2.2.2 Below is my .conf file input { file { path => "/my-file-path/logstash-test-data.log" start_position => "beginning" …
Pronoy Dutt
  • 11
  • 4
1
vote
3 answers

How do I tell Elasticsearch to get the column names from the first line of a file?

I just started using Elasticsearch/logstash. I have 3 different files with a common id. Each file contains the column names on the first line, for…
paksouse
  • 21
  • 1
  • 3
1
vote
0 answers

How to make Logstash parse newly added/logged content to a file input in a real-time way

I am reading the Processing Apache Logs example in the Logstash Configuration Examples section of the Logstash Reference [1.5]. One of the sentences goes: "Any additional lines logged to this file will also be captured, processed by Logstash as…
Mitchell Jiang
  • 41
  • 1
1
vote
1 answer

How to get Logstash Grok Fliter to see Newline and Carriage Returns?

I am trying to parse our log files and send them to elasticsearch. The problem is that our S3 client is injecting lines into the file that contains carriage returns (\r) instead of new line chars (\n). The config for the File Input Filter using '\n'…
Jeremiah Adams
  • 488
  • 1
  • 8
  • 19
1
vote
1 answer

How to make Logstash multiline filter merge lines based on some dynamic field value?

I am new to logstash and desparate to setup ELK for one of the usecase. I have found this question relevent to mine Why won't Logstash multiline merge lines based on grok'd field? If multiline filter do not merge lines on grok fields then how do I…
Sowmya
  • 13
  • 3
1
vote
1 answer

Add data to dynamic nested hash in logstash

I want to put a value into part of a nested hash, but name that part depending on upstream filters. This is to refactor and reduce overall code size as currently each of the 20+ incoming event types have their own section like this with 18 lines in…
hack_on
  • 2,532
  • 4
  • 26
  • 30
1
vote
2 answers

Logstash -- delimit event in log4net.log which may contain multiple lines

Here is a typical log file generated from log4net So, this log file is read by the logstash file input plugin. By default, the delimiter in configuration is \n, which means each line is an event. But in the log file above, you can see there could…
Mr.Wang from Next Door
  • 13,670
  • 12
  • 64
  • 97
1 2 3
14 15