...
Code Block |
---|
input { file { path => "/var/log/apache.log" add_field => { "source" => "apache" } # add a source field, for easier filtering start_position => "beginning" } } filter { if [source] == "apache" { # only try to parse if logs are from the "apache" source grok { match => [ "message", "%{COMBINEDAPACHELOG}" ] } } } output { elasticsearch { host => "logsene-receiver.sematext.com" ssl => true port => 80443 protocol => http index => "LOGSENE_APP_TOKEN_GOES_HERE" protocol => http manage_template => false } } |
...