first commit

2022-12-27 21:59:06 +01:00
commit 7ae0b00241
29 changed files with 1157 additions and 0 deletions
--- a/data/syslog-logstash/config/logstash.conf
+++ b/data/syslog-logstash/config/logstash.conf
@@ -0,0 +1,28 @@
+input {
+    beats {
+        port => 5044
+    }
+}
+
+filter {
+    grok {
+        match => ["message",  "<%{DATA:event_priority}>%{SYSLOGTIMESTAMP:syslog_timestamp} %{SYSLOGHOST:syslog_hostname} %{GREEDYDATA:syslog_process}\[%{NUMBER:syslog_uid}\]: %{DATA:SYSLOGMESSAGE}"]
+        add_tag => [ "syslog" ]
+    }
+
+}
+
+output {
+    #stdout {}
+    #file {
+    #    path => "/tmp/output.json"
+    #}
+    opensearch {
+        hosts => ["${OPENSEARCH_HOST}"]
+        index => "${OPENSEARCH_INDEX}-%{+YYYY-MM-dd}"
+        user => "${LOGSTASH_USER}"
+        password => "${LOGSTASH_PASSWORD}"
+        ssl => true
+        ssl_certificate_verification => false
+   }
+}