I am new to Graylog and trying to setup apache access logs and error logs. I have used ELK stack once where it go like Beats>Logstash(do some formatting of log using gork) > elasticsearch (update template to consider responsecode and responsetime as number)> Kibana
In Graylog what would you suggest the best approach to ship logs and format the logs. I see there is an extractor option avilable.
So if i send the logs from beats directly to graylog, would it extract and format the log and then store it in elastic search?
would I need to do anything in elasticsearch to consider the field and number?