Hi all,
A little new to the ELK stack and syslog in general and have questions. I want to make it as simple as possible for my folks to search inside ELK. In my case I have a multiple datacenters and different technology stacks. What I want to do is have a list of servers (somewhere) and tag them as they are coming into Logstash so it’s easier for folks to search/me to create dashboards. Loc1Myhost1 - Add Tags [Loc1] [Applicaiton1] [SQLServer] Loc1Myhost2 - Add Tags [Loc1] [Applicaiton2] [WebServer] Loc2Myhost7 - Add Tags [Loc2] [hypervisor1] [SQLServer] Loc3Myhost9 - Add Tags [Loc3] [Hypervisor2] [WebServer] I’ve been looking at the filter mechanism and don’t see any good examples of how this might be accomplished. Or am I doing this the hard way? Thanks, -- You received this message because you are subscribed to the Google Groups "elasticsearch" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/151bab47-a1b2-4609-b712-0b825326affa%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
