LOGIQ.AI
Home
LogFlow
Logiqctl
LogiqHub
Search…
Introduction
Overview
User Interface
Releases
EULA
End User License Agreement
Deploying LOGIQ
Quickstart with Docker-Compose
SaaS
PaaS deployment
INTEGRATIONS
Overview
AWS
Azure
Docker Syslog log driver
Docker Swarm logging
Filebeat
Fluent Bit
Fluentd
FortiNet Firewalls
GCP Cloud Logging
Incident management
Jaeger
Kafka
Kubernetes
Logstash
MQTT
OpenTelemetry
Palo Alto Firewall
Prometheus
Rsyslogd
Syslog-ng
Splunk Universal Forwarder
DATA MANAGEMENT
Overview
Rules
Timestamp handling
Infra & Application Monitoring
Overview
Writing queries
LOG MANAGEMENT
Terminology
Explore Logs
Log2Metrics
Reports
logiqctl
Role-Based Access Control (RBAC)
Configuring RBAC
Distributed Tracing
Overview
Traces
Logs
AUTONOMOUS INSIGHTS
Log Pattern-Signature
Time Series Insights
Alerts On Logs
Rule Packs
DATA SOURCES
Overview
API
AWS
NoSQL Data Sources
OLAP
SQL Data Sources
Time Series Databases
API
Query API
Administration
E-Mail Configuration
Single Sign-On with SAML
Audit Trail
Powered By
GitBook
Logstash
Syslog output plugin
input {
​
file {
path => "/var/log/syslog"
type => "syslog"
start_position => "beginning"
}
​
filter {
uuid {
target => "uuid"
}
}
​
output {
syslog { appname => "my-awesome-app"
host => "logiq-server-dns.my-domain.com"
protocol => "ssl-tcp"
msgid => "%{uuid}"
ssl_cert => "client.crt"
ssl_key => "client.key"
ssl_cacert => "logiq.crt"
ssl_verify => true
port => "7514"
rfc => "rfc5424"
id => "%{uuid}"
}
stdout { codec => rubydebug }
}
NOTE
: Change
"host" , "appname", "ssl_cert", "ssl_key", "ssl_cacert"
above to suit your configuration
HTTP output plugin
output {
http {
url => "https://logiq-dns-or-ip/v1/json_batch"
headers => { "Authorization" => "Bearer <Auth token>" }
http_method => "post"
format => "json_batch"
content_type => "json_batch"
pool_max => 300
pool_max_per_route => 100
socket_timeout => 60
}
}
You can additionally control the data organization by specifying additional fields
filter {
mutate {
add_field => { "cluster_id" => "demo-http-test" }
add_field => { "namespace" => "namespace_name" }
add_field => { "app_name" => "application_name" }
add_field => { "proc_id" => "process_or_pod_identifier" }
}
}
INTEGRATIONS - Previous
Kubernetes
Next - INTEGRATIONS
MQTT
Last modified
3mo ago
Export as PDF
Copy link
On this page
Syslog output plugin
HTTP output plugin