logstash多input 多 output 配置

最新推荐文章于 2023-01-16 17:02:24 发布

cplsm

最新推荐文章于 2023-01-16 17:02:24 发布

阅读量2.3k

点赞数 2

CC 4.0 BY-SA版权

分类专栏： elk

本文链接：https://blog.youkuaiyun.com/cplsm/article/details/104902178

elk 专栏收录该内容

3 篇文章

订阅专栏

本文详细解析了Logstash中RabbitMQ输入插件的配置方法，包括不同类型的日志如何通过RabbitMQ发送到Elasticsearch进行索引归档。具体涵盖了交换机设置、队列管理、身份验证及日志类型路由等关键配置。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

配置文件

input {
  rabbitmq {
       type =>"credit"
       durable => true
       exchange => "rabbit.credit.log"
       exchange_type => "direct"
       key => "credit_log"
       port => 5672
       user => "guest"
       password => "894924454"
       queue => "credit_log_queue"
       auto_delete => false
  }    
  rabbitmq {
       type =>"system"
       durable => true
       exchange => "rabbit.system.log"
       exchange_type => "direct"
       key => "system_log"
       host => "127.0.0.1"
       port => 5672
       user => "guest"
       password => "894924454"
       queue => "credit_log_queue"
       auto_delete => false
  }     
 
}

output{

   if [type] == "system"{
       elasticsearch {
        hosts=>["127.0.0.1:9200"]
        index => "es-credit-%{+YYYY.MM.dd}" #对日志进行索引归档
       }
   }   
   if [type] == "system"{
       elasticsearch {
        hosts=>["127.0.0.1:9200"]
        index => "es-credit-%{+YYYY.MM.dd}" #对日志进行索引归档
       }
    }