Página inicial Explorar Ajuda
Entrar
python
/
dm
2
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: f5dccb0399
Branches Tags
dm
/
container
/
conf
/
elastic
/
filebeat
/
filebeat.yml

filebeat.yml 4.3 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121 
  1. ###################### Filebeat Configuration Example #########################
    2. 

  2. 

  3. # This file is an example configuration file highlighting only the most common
    4. 

  4. # options. The filebeat.full.yml file from the same directory contains all the
    5. 

  5. # supported options with more comments. You can use it as a reference.
    6. 

  6. #
    7. 

  7. # You can find the full configuration reference here:
    8. 

  8. # https://www.elastic.co/guide/en/beats/filebeat/index.html
    9. 

  9. 

  10. #=========================== Filebeat prospectors =============================
    11. 

  11. 

  12. filebeat.prospectors:
    13. 

  13. 

  14. # Each - is a prospector. Most options can be set at the prospector level, so
    15. 

  15. # you can use different prospectors for various configurations.
    16. 

  16. # Below are the prospector specific configurations.
    17. 

  17. 

  18. - input_type: log
    19. 

  19. 

  20.   # Paths that should be crawled and fetched. Glob based paths.
    21. 

  21.   paths:
    22. 

  22.     - "/root/nginx/*.log"
    23. 

  23.     #- "/root/docker/*/*.log"
    24. 

  24.     #- "/root/php7/*.log"
    25. 

  25.     #- c:\programdata\elasticsearch\logs\*
    26. 

  26.   encoding: utf-8
    27. 

  27. 

  28.   # Exclude lines. A list of regular expressions to match. It drops the lines that are
    29. 

  29.   # matching any regular expression from the list.
    30. 

  30.   #exclude_lines: ["^DBG"]
    31. 

  31. 

  32.   # Include lines. A list of regular expressions to match. It exports the lines that are
    33. 

  33.   # matching any regular expression from the list.
    34. 

  34.   #include_lines: ["^ERR", "^WARN"]
    35. 

  35. 

  36.   # Exclude files. A list of regular expressions to match. Filebeat drops the files that
    37. 

  37.   # are matching any regular expression from the list. By default, no files are dropped.
    38. 

  38.   #exclude_files: [".gz$"]
    39. 

  39. 

  40.   # Optional additional fields. These field can be freely picked
    41. 

  41.   # to add additional information to the crawled log files for filtering
    42. 

  42.   #fields:
    43. 

  43.   #  level: debug
    44. 

  44.   #  review: 1
    45. 

  45.   close_older: 24h
    46. 

  46. 

  47.   ### Multiline options
    48. 

  48. 

  49.   # Mutiline can be used for log messages spanning multiple lines. This is common
    50. 

  50.   # for Java Stack Traces or C-Line Continuation
    51. 

  51. 

  52.   # The regexp Pattern that has to be matched. The example pattern matches all lines starting with [
    53. 

  53.   #multiline.pattern: ^\[
    54. 

  54. 

  55.   # Defines if the pattern set under pattern should be negated or not. Default is false.
    56. 

  56.   #multiline.negate: false
    57. 

  57. 

  58.   # Match can be set to "after" or "before". It is used to define if lines should be append to a pattern
    59. 

  59.   # that was (not) matched before or after or as long as a pattern is not matched based on negate.
    60. 

  60.   # Note: After is the equivalent to previous and before is the equivalent to to next in Logstash
    61. 

  61.   #multiline.match: after
    62. 

  62. 

  63. 

  64. #================================ General =====================================
    65. 

  65. 

  66. # The name of the shipper that publishes the network data. It can be used to group
    67. 

  67. # all the transactions sent by a single shipper in the web interface.
    68. 

  68. #name:
    69. 

  69. 

  70. # The tags of the shipper are included in their own field with each
    71. 

  71. # transaction published.
    72. 

  72. #tags: ["service-X", "web-tier"]
    73. 

  73. 

  74. # Optional fields that you can specify to add additional information to the
    75. 

  75. # output.
    76. 

  76. #fields:
    77. 

  77. #  env: staging
    78. 

  78. 

  79. #================================ Outputs =====================================
    80. 

  80. 

  81. # Configure what outputs to use when sending the data collected by the beat.
    82. 

  82. # Multiple outputs may be used.
    83. 

  83. 

  84. #-------------------------- Elasticsearch output ------------------------------
    85. 

  85. output.elasticsearch:
    86. 

  86.   # Array of hosts to connect to.
    87. 

  87.   hosts: ["elk-es:9200"]
    88. 

  88. 

  89.   # Optional protocol and basic auth credentials.
    90. 

  90.   #protocol: "https"
    91. 

  91.   username: "elastic"
    92. 

  92.   password: "changeme"
    93. 

  93.   #index: "nginx-%{+yyyy.MM.dd}"
    94. 

  94.   #curl -XPUT 'http://elk-ek:9200/_ingest/pipeline/nginx-pipeline' -d@/work/pipeline.json
    95. 

  95.   #pipeline: "nginx-pipeline"
    96. 

  96. 

  97. #----------------------------- Logstash output --------------------------------
    98. 

  98. #output.logstash:
    99. 

  99.   # The Logstash hosts
    100. 

  100.   #hosts: ["elk-logstash:5044"]
    101. 

  101. 

  102.   # Optional SSL. By default is off.
    103. 

  103.   # List of root certificates for HTTPS server verifications
    104. 

  104.   #ssl.certificate_authorities: ["/etc/pki/root/ca.pem"]
    105. 

  105. 

  106.   # Certificate for SSL client authentication
    107. 

  107.   #ssl.certificate: "/etc/pki/client/cert.pem"
    108. 

  108. 

  109.   # Client Certificate Key
    110. 

  110.   #ssl.key: "/etc/pki/client/cert.key"
    111. 

  111. 

  112. #================================ Logging =====================================
    113. 

  113. 

  114. # Sets log level. The default log level is info.
    115. 

  115. # Available log levels are: critical, error, warning, info, debug
    116. 

  116. #logging.level: debug
    117. 

  117. 

  118. # At debug level, you can selectively enable logging only for some components.
    119. 

  119. # To enable all selectors use ["*"]. Examples of other selectors are "beat",
    120. 

  120. # "publish", "service".
    121. 

  121. #logging.selectors: ["*"]
    122.