Skip to content

MgCoders/docker-elk-filebeat

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

README.md

README.md

 
 

docker-compose.yml

docker-compose.yml

 
 

filebeat.yml

filebeat.yml

 
 

Repository files navigation

docker-elk-filebeat

Filebeat => Logstash

El contenedor con Filebeat enviará los logs del resto de los contnedores del host a un servidor logstash. El repo original es: https://github.com/willfarrell/docker-filebeat

El host y puerto de logstash se configura en filebeat.yml.

Para ejecutar este contenedor:

docker-compose up -d

Logstash debe ser configurado de la siguiente manera:

input {
  beats {
    port => 5000
  }
}
## Add your filters / logstash plugins configuration here

filter {

  if [type] == "filebeat-docker-logs" {

    grok {
      match => { 
        "message" => "\[%{WORD:containerName}\] %{GREEDYDATA:message_remainder}"
      }
    }

    mutate {
      replace => { "message" => "%{message_remainder}" }
    }

    mutate {
      remove_field => [ "message_remainder" ]
    }

  }

}

output {
    elasticsearch {
        hosts => "elasticsearch:9200"
    }
#stdout { codec => rubydebug }
}

About

Filebeat -> Logstash

Topics

logstash filebeat elk-stack

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

7 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published