Hi,
I have filebeat sending logs to my Graylog server, and I would like to send the Apache logs a bit more “formatted”. GELF like. Looks like Filebeat apache module does this thing for me, but I would like to know how to configure this module with Sidecar. If I add a module line into my configuration file, it doesn’t work.
How do you send your apache logs divided (host, remote IP, status, etc…)?
While filebeat and winlogbeat are included in the Windows sidecar install, they are an older version and may have some limitations (such as missing modules).
You can install a later version of filebeat, though be sure to stop and disable the service (if it creates one). You can then add this binary path as a ‘Log Collector’ via the Sidecar section in graylog:
Be aware that if you place filebeat in a non-standard path, you will need to add the binary path of that collector (e.g. filebeat) to a list of allowed collectors in the sidecar config itself:
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.
