logstash-syslog-conf

ELK Syslog Visualization

ELK Syslog Visualization logstash conf

E : Elasticsearch

L : Logstash

K : Kibana

Commands

To search Elasticsearh index

curl -X PUT 'localhost:9200/_index'

To clear Elasticsearch index

curl -X DELETE 'localhost:9200/[index_name]'

To clear Elasticsearch index_syslog

curl -X DELETE 'localhost:9200/index_syslog'

Syslog

Log systems messages

Elasticsearch

https://www.elastic.co/products/elasticsearch

Logstash

https://www.elastic.co/products/logstash

Kibana

https://www.elastic.co/products/kibana

Elasticsearch Reference

https://www.elastic.co/guide/en/elasticsearch/reference/current/index.html