From Files

Log files come in many different formats, which can make them difficult to handle.

A highly recommended way to pick a log file from Windows or Linux systems is filebeat.

A basic filebeat configuration for filebeat on Linux may look like the following:

fields_under_root: true
fields.collector_node_id: ${sidecar.nodeName}
fields.gl2_source_collector: ${sidecar.nodeId}

filebeat.inputs:
- input_type: log
  paths:
    - /var/log/*.log
  type: log
output.logstash:
   hosts: ["leona:5044"]
path:
  data: /var/lib/graylog-sidecar/collectors/filebeat/data
  logs: /var/lib/graylog-sidecar/collectors/filebeat/log