Skip to content

Instantly share code, notes, and snippets.

/logzio.config Secret

Created Jun 1, 2017
Embed
What would you like to do?
LogzIO - Beanstalk
files:
"/etc/filebeat/filebeat.yml":
mode: "000755"
owner: root
group: root
content: |
filebeat:
prospectors:
-
paths:
- /var/log/eb-commandprocessor.log
fields:
logzio_codec: plain
token: <<<<<<YOUR TOKEN>>>>>>
environment: dev
fields_under_root: true
ignore_older: 3h
document_type: eb-commands
-
paths:
- /var/log/eb-version-deployment.log
fields:
logzio_codec: plain
token: <<<<<<YOUR TOKEN>>>>>>
environment: dev
fields_under_root: true
ignore_older: 3h
document_type: eb-version-deployment
-
paths:
- /var/log/eb-activity.log
fields:
logzio_codec: plain
token: <<<<<<YOUR TOKEN>>>>>>
environment: dev
fields_under_root: true
ignore_older: 3h
document_type: eb-activity
registry_file: /var/lib/filebeat/registry
output:
### Elasticsearch as output
logstash:
hosts: ["listener.logz.io:5015"]
ssl:
certificate_authorities: ['/etc/pki/tls/certs/COMODORSADomainValidationSecureServerCA.crt']
commands:
1_command:
command: "curl -L -O https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-5.0.1-x86_64.rpm"
cwd: /home/ec2-user
2_command:
command: "rpm -ivh --replacepkgs filebeat-5.0.1-x86_64.rpm"
cwd: /home/ec2-user
3_command:
command: "mkdir -p /etc/pki/tls/certs"
cwd: /home/ec2-user
4_command:
command: "wget https://raw.githubusercontent.com/logzio/public-certificates/master/COMODORSADomainValidationSecureServerCA.crt"
cwd: /etc/pki/tls/certs
5_command:
command: "/etc/init.d/filebeat start"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment