Home > database >  How to add severity, facility field to Kibana with fluentd parse?
How to add severity, facility field to Kibana with fluentd parse?

Time:01-15

I use rsyslog with the default config, traditional template. Rsyslog sends all syslog to fluentd.

My fluentd config:

<source>
 @type syslog
 port 5140
 tag rsyslog
</source>

<match rsyslog.*.*>
 @type elasticsearch
 host localhost
 port 9200
 logstash_format true
</match>

Kibana:

enter image description here

How to add severity and facility fields to Kibana?

CodePudding user response:

You can configure severity_key (https://docs.fluentd.org/input/syslog#severity_key) and facility_key (https://docs.fluentd.org/input/syslog#facility_key) config to extract severity and facility. So something like this should work:

<source>
 @type syslog
 port 5140
 tag rsyslog
 severity_key severity
 facility_key facility
</source>

Page link:https//www.codepudding.com/database/263817.html

Prev:Why is my text clipped in each row of this Android Jetpack Compose list?
Next:Android manager System UI ısn't responding react-native
  •  Tags:  
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding