destination d_elasticsearch_http {
elasticsearch-http(
url("
https://elastricsearch:9200/_bulk")
template("$(format-json --scope rfc5424 --scope dot-nv-pairs
--rekey .* --shift 1 --scope nv-pairs
--exclude DATE --key ISODATE @timestamp=${ISODATE})")
index("syslog-ng-test")
#time-zone("UTC")
type("")
workers(4)
batch-lines(100)
#batch-timeout(10000)
#timeout(10)
tls(
#ca-dir("/etc/syslog-ng/conf.d")
ca-file("/etc/syslog-ng/conf.d/root-ca.pem")
cert-file("/etc/syslog-ng/conf.d/admin.pem")
key-file("/etc/syslog-ng/conf.d/admin.key")
peer-verify(no)
)
);
};