A brief overview of Logstash

Logstash offers a horizontally skaable pipeline architecture. The task of Logstash is to receive data from one or more input channels and to combine them if necessary. The input data can have different file types. These are then filtered or processed and forwarded to outputs. Logstash does not take care of the storage, but only of the control and filtering of the channels.

It supports various plugins and offers a wide range of individual applications. Plugins are configuration files, which are filled out according to a certain pattern or written according to specifications. These give Logstash a certain functionality depending on the plugin content. For example, it is possible to perform operations like anonymization, link IP addresses with geo-coordinates, convert error codes into error messages or convert IP addresses into hostnames.

In addition to the existing interfaces for collecting, transferring and outputting logs, it is possible to write your own API’s using the Ruby programming language. Despite the various integration possibilities Logstash is very user-friendly. The installation is kept simple. Filters can be adapted and written by yourself.

Refer tofor more information https://www.elastic.co/de/logstash

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s