Filebeats and Logstash

pongafence · August 10, 2017, 03:23:33 PM

Hi guys,

We run ELK internally for all of our logging, and run Filebeat specifically on all our servers where possible.

Was wanting to know if we could potentially have Filebeats and Logstash included to export things like Suricata Eve logs and maybe Squid and other system logs into our ELK cluster directly?

At the moment we're just throwing SYSLOGs at it and are trying and working with those logs for the moment. But itd be nice to have Filebeats and Logstash.

Has anyone else done this yet?

hilfubsi · March 23, 2018, 08:41:12 PM

Trying to achieve that as well. Any luck OP?

Filebeats and Logstash

pongafence

August 10, 2017, 03:23:33 PM

hilfubsi

March 23, 2018, 08:41:12 PM #1