[syslog-ng] Fields don't appear on kibana.
Fabien Wernli
wernli at in2p3.fr
Tue Sep 1 12:03:54 CEST 2015
Hi again,
On Tue, Sep 01, 2015 at 11:28:45AM +0200, Jacek Drewniak wrote:
> Unfortunately I am doing this on host with elasticsearch, that is why I
> don't know what is wrong.
> Message template?
the `message_template` option of the elastic java module controls the
key-values which are sent to ES. For instance:
destination d_elastic {
java(
option("message_template", "$(format-json -s all-nv-pairs -s rfc5424 -x DATE -k ISODATE)")
...
}
also remove the `option("IP", "${SOURCEIP}"` which has nothing to do in
there
More information about the syslog-ng
mailing list