From 39e98f94f334d18968061c7eed4f0bdde30898eb Mon Sep 17 00:00:00 2001 From: alkac Date: Mon, 7 Aug 2017 22:12:52 +0530 Subject: [LOG-31]Config for FileBeat Shipping of ONAP Logs Change-Id: I176067a1ad84aba0fa99a609e695a77abb118cc8 Signed-off-by: alkac --- elasticstack/filebeat/logback/conf/filebeat.yml | 39 +++++++++++++++++++++++++ 1 file changed, 39 insertions(+) create mode 100644 elasticstack/filebeat/logback/conf/filebeat.yml (limited to 'elasticstack/filebeat/logback/conf/filebeat.yml') diff --git a/elasticstack/filebeat/logback/conf/filebeat.yml b/elasticstack/filebeat/logback/conf/filebeat.yml new file mode 100644 index 0000000..cfc7859 --- /dev/null +++ b/elasticstack/filebeat/logback/conf/filebeat.yml @@ -0,0 +1,39 @@ +filebeat.prospectors: +#it is mandatory, in our case it's log +- input_type: log + #This is the canonical path as mentioned in logback.xml, *.* means it will monitor all files in the directory. + paths: + - /var/log/onap/*/*/*.log + - /var/log/onap/*/*.log + #Files older than this should be ignored. In our case it will be 48 hours i.e. 2 days. It is a helping flag for clean_inactive + ignore_older: 48h + #Remove the registry entry for a file that is more than the specified time. In our case it will be 96 hours, i.e. 4 days. It will help to keep registry records within limit + clean_inactive: 96h + + +#Name of the registry file. If a relative path is used, it is considered relative to the data path. Else full qualified file name. +#filebeat.registry_file: ${path.data}/registry + + +output.logstash: + #List of logstash server ip addresses with port number. + #But, in our case, this will be the loadbalancer IP address. + #For the below property to work the loadbalancer or logstash should expose 5044 port to listen the filebeat events or port in the property should be changed appropriately. + hosts: ["loadbalancer.onap:5044"] + #If enable will do load balancing among availabe Logstash, automatically. + loadbalance: true + + #The list of root certificates for server verifications. + #If certificate_authorities is empty or not set, the trusted + #certificate authorities of the host system are used. + #ssl.certificate_authorities: $ssl.certificate_authorities + + #The path to the certificate for SSL client authentication. If the certificate is not specified, + #client authentication is not available. + #ssl.certificate: $ssl.certificate + + #The client certificate key used for client authentication. + #ssl.key: $ssl.key + + #The passphrase used to decrypt an encrypted key stored in the configured key file + #ssl.key_passphrase: $ssl.key_passphrase \ No newline at end of file -- cgit 1.2.3-korg