Logstash¶
The OP5 Log Analytics use Logstash service to dynamically unify data from disparate sources and normalize the data into destynation of your choise. A Logstash pipeline has two required elements, input and output, and one optional elemnet filter. The input plugins consume data from a source, the filter plugins modify teh data as you specify, and the output plugins writethe data to a destynation. The default location of the Logstash plugin files is: /etc/logstash/conf.d/. This location contain following OP5 Log Analytics default plugins:
01-input-beats.conf01-input-syslog.conf020-filter-beats-syslog.conf020-filter-network.conf099-filter-geoip.conf100-output-elasticsearch.confnaemon_beat.exampleperflogs.example