Beats
Beats | Elastic
Beats Platform Reference | Elastic
Beats 5.3.0 released | Elastic
Filebeat modules, access logs and Elasticsearch storage requirements | Elastic tuning to save storage
Structured logging with Filebeat | Elastic
Index template
Each beat should have a corresponding template for index creation, see elastic-elasticsearch#index-creation-mapping.
Elasticsearch can auto detect the schema but we can be more specific by adding the index template specific to the beat.
# get all indices
http -b http://elasticsearch:9200/_cat/indices?pretty
# get all index templates
http -b http://elasticsearch:9200/_template?pretty
curl -XPUT 'http://elasticsearch:9200/_template/filebeat' -d@filebeat/filebeat.template.json
curl -XPUT 'http://elasticsearch:9200/_template/dockbeat' -d@dockbeat/dockbeat.template.jsonOfficial beats
elastic/beats: Beats - Lightweight shippers for Elasticsearch & Logstash
Filebeat | Elastic ❗!important
Filebeat Reference | Elastic
beats/filebeat at master · elastic/beats
Filebeat vs. Logstash -- The Evolution of a Log Shipper - Logz.io
Metricbeat | Elastic
Metricbeat Reference | Elastic
beats/metricbeat at master · elastic/beats
Packetbeat | Elastic
Packetbeat Reference | Elastic
beats/packetbeat at master · elastic/beats
Topbeat | Elastic (legacy)
Topbeat Reference | Elastic
Community Beats
Community Beats | Beats Platform Reference | Elastic
Ingensi/dockbeat: Dockbeat - the elastic Beat for docker daemon monitoring
YaSuenag/hsbeat: Beat for Java HotSpot VM
PhaedrusTheGreek/nagioscheckbeat: An Elastic Beat for all the Nagios checks
christiangalsterer/httpbeat: Elastic Beat to call HTTP endpoints different from Logstash's http_poller as this works in local LAN and push to Logstash
mheese/journalbeat: Journalbeat is a log shipper from systemd/journald to Logstash/Elasticsearch