Home Explore Help
Sign In
recycle
/
dm
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e13a431ded
Branches Tags
dm
/
conf
/
elastic
/
filebeat
/
filebeat.yml

filebeat.yml 4.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114 
  1. ###################### Filebeat Configuration Example #########################
    2. 

  2. 

  3. # This file is an example configuration file highlighting only the most common
    4. 

  4. # options. The filebeat.full.yml file from the same directory contains all the
    5. 

  5. # supported options with more comments. You can use it as a reference.
    6. 

  6. #
    7. 

  7. # You can find the full configuration reference here:
    8. 

  8. # https://www.elastic.co/guide/en/beats/filebeat/index.html
    9. 

  9. 

  10. #=========================== Filebeat prospectors =============================
    11. 

  11. 

  12. filebeat.prospectors:
    13. 

  13. 

  14. # Each - is a prospector. Most options can be set at the prospector level, so
    15. 

  15. # you can use different prospectors for various configurations.
    16. 

  16. # Below are the prospector specific configurations.
    17. 

  17. 

  18. - input_type: log
    19. 

  19. 

  20.   # Paths that should be crawled and fetched. Glob based paths.
    21. 

  21.   paths:
    22. 

  22.     - /root/filebeat/*.log
    23. 

  23.     #- c:\programdata\elasticsearch\logs\*
    24. 

  24. 

  25.   # Exclude lines. A list of regular expressions to match. It drops the lines that are
    26. 

  26.   # matching any regular expression from the list.
    27. 

  27.   #exclude_lines: ["^DBG"]
    28. 

  28. 

  29.   # Include lines. A list of regular expressions to match. It exports the lines that are
    30. 

  30.   # matching any regular expression from the list.
    31. 

  31.   #include_lines: ["^ERR", "^WARN"]
    32. 

  32. 

  33.   # Exclude files. A list of regular expressions to match. Filebeat drops the files that
    34. 

  34.   # are matching any regular expression from the list. By default, no files are dropped.
    35. 

  35.   #exclude_files: [".gz$"]
    36. 

  36. 

  37.   # Optional additional fields. These field can be freely picked
    38. 

  38.   # to add additional information to the crawled log files for filtering
    39. 

  39.   #fields:
    40. 

  40.   #  level: debug
    41. 

  41.   #  review: 1
    42. 

  42. 

  43.   ### Multiline options
    44. 

  44. 

  45.   # Mutiline can be used for log messages spanning multiple lines. This is common
    46. 

  46.   # for Java Stack Traces or C-Line Continuation
    47. 

  47. 

  48.   # The regexp Pattern that has to be matched. The example pattern matches all lines starting with [
    49. 

  49.   #multiline.pattern: ^\[
    50. 

  50. 

  51.   # Defines if the pattern set under pattern should be negated or not. Default is false.
    52. 

  52.   #multiline.negate: false
    53. 

  53. 

  54.   # Match can be set to "after" or "before". It is used to define if lines should be append to a pattern
    55. 

  55.   # that was (not) matched before or after or as long as a pattern is not matched based on negate.
    56. 

  56.   # Note: After is the equivalent to previous and before is the equivalent to to next in Logstash
    57. 

  57.   #multiline.match: after
    58. 

  58. 

  59. 

  60. #================================ General =====================================
    61. 

  61. 

  62. # The name of the shipper that publishes the network data. It can be used to group
    63. 

  63. # all the transactions sent by a single shipper in the web interface.
    64. 

  64. #name:
    65. 

  65. 

  66. # The tags of the shipper are included in their own field with each
    67. 

  67. # transaction published.
    68. 

  68. #tags: ["service-X", "web-tier"]
    69. 

  69. 

  70. # Optional fields that you can specify to add additional information to the
    71. 

  71. # output.
    72. 

  72. #fields:
    73. 

  73. #  env: staging
    74. 

  74. 

  75. #================================ Outputs =====================================
    76. 

  76. 

  77. # Configure what outputs to use when sending the data collected by the beat.
    78. 

  78. # Multiple outputs may be used.
    79. 

  79. 

  80. #-------------------------- Elasticsearch output ------------------------------
    81. 

  81. output.elasticsearch:
    82. 

  82.   # Array of hosts to connect to.
    83. 

  83.   hosts: ["elk-es:9200"]
    84. 

  84. 

  85.   # Optional protocol and basic auth credentials.
    86. 

  86.   #protocol: "https"
    87. 

  87.   username: "elastic"
    88. 

  88.   password: "changeme"
    89. 

  89. 

  90. #----------------------------- Logstash output --------------------------------
    91. 

  91. #output.logstash:
    92. 

  92.   # The Logstash hosts
    93. 

  93.   #hosts: ["elk-logstash:5044"]
    94. 

  94. 

  95.   # Optional SSL. By default is off.
    96. 

  96.   # List of root certificates for HTTPS server verifications
    97. 

  97.   #ssl.certificate_authorities: ["/etc/pki/root/ca.pem"]
    98. 

  98. 

  99.   # Certificate for SSL client authentication
    100. 

  100.   #ssl.certificate: "/etc/pki/client/cert.pem"
    101. 

  101. 

  102.   # Client Certificate Key
    103. 

  103.   #ssl.key: "/etc/pki/client/cert.key"
    104. 

  104. 

  105. #================================ Logging =====================================
    106. 

  106. 

  107. # Sets log level. The default log level is info.
    108. 

  108. # Available log levels are: critical, error, warning, info, debug
    109. 

  109. #logging.level: debug
    110. 

  110. 

  111. # At debug level, you can selectively enable logging only for some components.
    112. 

  112. # To enable all selectors use ["*"]. Examples of other selectors are "beat",
    113. 

  113. # "publish", "service".
    114. 

  114. #logging.selectors: ["*"]
    115.