summaryrefslogtreecommitdiffstats
path: root/elasticstack/filebeat/log4j/conf/filebeat.yml
blob: 1fa01e57502eed705f56112203dd5cc4a4ed1091 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
filebeat.prospectors:
#it is mandatory, in our case it's log
- input_type: log
  #This is the canonical path as mentioned in logback.xml, *.* means it will monitor all files in the directory.
  paths:
    - /var/log/onap/*/*/*.log
    - /var/log/onap/*/*.log
    
  #The below commented properties are for time-based rolling policy. But as the log4j 1.2x does not support time-based rolling these properties are not set
  #Files older than this should be ignored.In our case it will be 48 hours i.e. 2 days. It is a helping flag for clean_inactive
  #ignore_older: 48h
  #Remove the registry entry for a file that is more than the specified time. In our case it will be 96 hours, i.e. 4 days. It will help to keep registry records within limit
  #clean_inactive: 96h
  
  #Multiline properties for log4j xml log events
  multiline.pattern: '</log4j:event>'
  multiline.negate: true
  multiline.match: before
  #multiline.max_lines: 500
  #multiline.timeout: 5s
   
#Name of the registry file. If a relative path is used, it is considered relative to the data path. Else full qualified file name.
#filebeat.registry_file: ${path.data}/registry


output.logstash:
  #List of logstash server ip addresses with port number. 
  #But, in our case, this will be the loadbalancer IP address.
  #For the below property to work the loadbalancer or logstash should expose 5044 port to listen the filebeat events or port in the property should be changed appropriately.
  hosts: ["loadbalancer.onap:5044"]
  #If enable will do load balancing among availabe Logstash, automatically.
  loadbalance: true
  
  #The list of root certificates for server verifications. 
  #If certificate_authorities is empty or not set, the trusted 
  #certificate authorities of the host system are used.
  #ssl.certificate_authorities: $ssl.certificate_authorities
  
  #The path to the certificate for SSL client authentication. If the certificate is not specified, 
  #client authentication is not available.
  #ssl.certificate: $ssl.certificate
  
  #The client certificate key used for client authentication. 
  #ssl.key: $ssl.key
  
  #The passphrase used to decrypt an encrypted key stored in the configured key file
  #ssl.key_passphrase: $ssl.key_passphrase