yum install rsyslog -y Add the following to rsyslog.conf on the client system ############ $ModLoad imfile $InputFileName /var/log/elasticsearch/elasticsearch.log $InputFileTag elasticsearch $InputFileStateFile stat-elasticsearch $InputFileSeverity Info $InputFileFacility daemon $InputRunFileMonitor #local3.* hostname:<portnumber> daemon.* @192.168.1.66:514 ############ Also if you want all logs to go through to syslog server: *.* @192.168.1.66 at the end of the file….
Sending Elasticsearch to a syslog server
Posted on