-
Notifications
You must be signed in to change notification settings - Fork 86
/
Copy pathfilebeat.yml
112 lines (98 loc) · 2.75 KB
/
filebeat.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
#========================== Modules configuration =============================
filebeat.modules:
#--------------------------- nginx input ----------------------------
- module: nginx
access:
enabled: false
ingress_controller:
enabled: false
error:
enabled: true
#--------------------------- mysql input ----------------------------
- module: mysql
error:
enabled: true
#=========================== Filebeat inputs =============================
filebeat.inputs:
#--------------------------- magento input ----------------------------
- type: filestream
enabled: true
id: Magento 2 logs
paths:
- MAGENTO_ROOT_PATH/var/log/system.log
fields_under_root: true
fields:
service.type: "magento"
domain: "MAGENTO_DOMAIN"
parsers:
- multiline:
pattern: '^\[[0-9]{4}-[0-9]{2}-[0-9]{2}T[0-9]{2}:[0-9]{2}:[0-9]{2}.[0-9]{6}\+[0-9]{2}:[0-9]{2}\]'
negate: true
match: after
processors:
- drop_event:
when:
regexp:
message: 'main.INFO:'
- dissect:
tokenizer: '[%{date}] main.%{level}: '
field: "message"
target_prefix: "log"
- timestamp:
field: date
layouts:
- '2006-01-02T15:04:05.000000+00:00'
test:
- '2022-11-25T18:24:05.000000+00:00'
- drop_fields:
fields: ["log.date"]
#--------------------------- php-fpm input ----------------------------
- type: filestream
enabled: true
id: Magento 2 php-fpm logs
paths:
- MAGENTO_ROOT_PATH/var/log/php-fpm-error.log
fields_under_root: true
fields:
service.type: "php"
domain: "MAGENTO_DOMAIN"
parsers:
- multiline:
pattern: '^\[[0-9]{2}-\w{3}-[0-9]{4} [0-9]{2}:[0-9]{2}:[0-9]{2} '
negate: true
match: after
processors:
- drop_event:
when:
regexp:
message: 'PHP Warning'
- dissect:
tokenizer: '[%{date} MAGENTO_TIMEZONE] PHP %{level} error'
field: "message"
target_prefix: "log"
- timestamp:
field: log.date
layouts:
- '26-Nov-2022 21:28:15'
test:
- '26-Nov-2022 21:28:15'
- drop_fields:
fields: ["log.date"]
#--------------------------- elasticsearch output ----------------------------
setup.template:
name: "magento_logs"
pattern: "magento_logs-%{[service.type]}-*"
overwrite: true
enabled: false
setup.ilm.enabled: false
output.elasticsearch:
hosts: ['http://127.0.0.1:9200']
username: "magento_logs"
password: "MAGENTO_LOGS_PASSWORD"
indices:
- index: "magento_logs-%{[service.type]}-%{[domain]}-%{+yyyy.MM.dd}"
when.has_fileds: ["domain"]
- index: "magento_logs-%{[service.type]}-%{+yyyy.MM.dd}"
when.not.has_fields: ["domain"]
monitoring:
enabled: false