forked from Aiven-Open/journalpump
-
Notifications
You must be signed in to change notification settings - Fork 0
/
journalpump.json
37 lines (37 loc) · 1.18 KB
/
journalpump.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
{
"readers": {
"host1": {
"senders": {
"elastic1": {
"output_type": "elasticsearch",
"elasticsearch_url": "https://u9r6z9e8:[email protected]:18195",
"elasticsearch_index_prefix": "journalpump",
"elasticsearch_index_days_max": 3,
"ca": "path/to/ca/file",
"certfile": "path/to/cert",
"keyfile": "path/to/key",
"ssl": true,
},
"kafka1": {
"output_type": "kafka",
"kafka_topic": "testtopic",
"kafka_address": "localhost",
"match_key": "_MACHINE_ID",
"match_value": "97baf08d-62a5-47a6-9ce3-cd3b6685d3ec"
}
}
},
"sshd": {
"flags": 4,
"units_to_match": [
"sshd.service"
],
"senders": {
"logfile1": {
"output_type": "file",
"file_output": "/tmp/sshd.log"
}
}
}
}
}