Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
L
L
luxter2017-03-15 11:37:24
Asterisk
luxter, 2017-03-15 11:37:24

logstash. How to accept logs from different services for their further filtering?

There is a logstash receiving server on port n. All syslog's are poured there from all clients, including Apache, asterisk, postfix.
The udp listener listens and accepts the syslog type, which seems logical, but how can I then separate the type of received logs in order to further parse through grok? Pseudoconfig as I want:

input { udp {port ... type = syslog}}
filter {
if type == ["syslog"]
....
if type == ["asterisk"]
....
if type == ["postfix"]
....
}

I saw for examples that for each type there is a separate port in the input, but I won’t open all ports in the firewall, because if I have, roughly, a thousand types of logs? There must be a more elegant solution...

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
D
Dimonchik, 2017-03-19
@dimonchik2013

stackoverflow.com/questions/18330541/how-to-handle...
figure it out?

Similar questions
A
Alexey2015-10-19 22:10:04
How to change asterisk server ip? 4Reply
A
Alexander Kryuchkov2011-08-04 18:03:13
Asterisk 1.6 / poor hearing, sound loss 3Reply
Y
Yuri Yusupbaev2015-10-23 08:48:34
Do you get an error on asterisk 13? 1Reply
R
romatregub2018-02-28 12:49:50
Where do I start to set up an Android application to communicate with Asterisk? 2Reply
D
Drum Kit2015-10-27 11:17:06
How does Asterisk work? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question