logstash

Logstash using dissect instead of grok for filtering

Some time a go I've came across the dissect filter for logstash to extract data from my access_logs before I hand it over to elasticsearch. Dissect is a different type of filter than grok since it does not use regex, but it's an alternative way to aproach data. Dissect

elasticsearch 2.x

Configure elasticsearch logstash filebeats with shield to monitor nginx access.log

In this post I will show how to install and configure elasticsearch for authentication with shield and configure logstash to get the nginx logs via filebeat and send it to elasticsearch. Why we do need filebeat when we have packetbeat? It is a good question. The short answer it is

elasticsearch

Setup and configure elasticsearch, logstash, logstash-forwarder and kibana on debian jessie

INTRODUCTION## This is the first part of a series of tutorials on how to install configure and setup elasticsearch, logstash and kibana on debian jessie using VPSie SSD VPS service. Elastic as the company behind the three opensource projects - Elasticsearch, Logstash, and Kibana — designed to take data from any