Configure logstash to send logs to Elasticsearch

Author: daniel-frak

docker/logstash/pipeline/logstash.conf

@@ -0,0 +1,28 @@
+input {
+    tcp {
+        port => 5000
+        type => syslog
+        codec => json_lines
+    }
+}
+
+filter {
+    grok {
+        match => [ "message", "%{GREEDYDATA}" ]
+    }
+    mutate {
+        add_field => { "instance_name" => "%{app_name}-%{host}:%{app_port}" }
+    }
+}
+
+output {
+    stdout { # This will log all messages so that we can confirm that Logstash is receiving them
+        codec => rubydebug
+    }
+    elasticsearch {
+        hosts => [ "${XPACK_MONITORING_ELASTICSEARCH_HOSTS}" ]
+        user => "${XPACK_MONITORING_ELASTICSEARCH_USERNAME}"
+        password => "${XPACK_MONITORING_ELASTICSEARCH_PASSWORD}"
+        index => "logstash-%{+YYYY.MM.dd}"
+    }
+}