tsudot/gist:9401898

## gistfile1.txt
input {
  udp {
    port => 5666
    type => syslog
  }
}

filter {
  grok {
      type => "syslog"
      pattern => "%{TIMESTAMP_ISO8601:timestamp} %{WORD:auth_id} %{SYSLOGPROG:prog} - %{LOGLEVEL:log_level}: %{GREEDYDATA:message}"
  }
}

output {
  elasticsearch_http {
      host => "184.173.XX.XX"
      type => "syslog"
  }
}
	input {
	udp {
	port => 5666
	type => syslog
	}
	}

	filter {
	grok {
	type => "syslog"
	pattern => "%{TIMESTAMP_ISO8601:timestamp} %{WORD:auth_id} %{SYSLOGPROG:prog} - %{LOGLEVEL:log_level}: %{GREEDYDATA:message}"
	}
	}

	output {
	elasticsearch_http {
	host => "184.173.XX.XX"
	type => "syslog"
	}
	}