forked from elevennl/beats-formula
-
Notifications
You must be signed in to change notification settings - Fork 0
/
pillar.example
130 lines (130 loc) · 4.01 KB
/
pillar.example
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
beats:
version: 6
use_upstream_repo: True
filebeat:
config:
filebeat.prospectors:
- input_type: log
paths:
- /var/log/*.log
output.elasticsearch:
hosts: ["localhost:9200"]
logging.to_files: true
logging.files:
path: /var/log/filebeat
name: filebeat
rotateeverybytes: 10485760
keepfiles: 7
metricbeat:
config:
cbeat.config.modules:
path: ${path.config}/conf.d/*.yml
reload.period: 10s
reload.enabled: false
metricbeat.modules:
- module: system
metricsets:
- cpu
- load
- filesystem
- fsstat
- memory
- network
- process
enabled: true
period: 10s
processes: ['.*']
output.elasticsearch:
hosts: ["localhost:9200"]
logging.to_files: true
logging.files:
path: /var/log/metricbeat
name: metricbeat
rotateeverybytes: 10485760
keepfiles: 7
auditbeat:
config:
auditbeat.modules:
- module: audit
metricsets: [file]
file.paths:
- /bin
- /usr/bin
- /sbin
- /usr/sbin
- /etc
output.logstash:
hosts: ["localhost:9200"]
logging.to_files: false
packetbeat:
config:
packetbeat.interfaces.device: any
packetbeat.flows:
timeout: 30s
period: 10s
packetbeat.protocols.icmp:
enabled: true
packetbeat.protocols.amqp:
ports: [5672]
packetbeat.protocols.cassandra:
ports: [9042]
packetbeat.protocols.dns:
ports: [53]
include_authorities: true
include_additionals: true
packetbeat.protocols.http:
ports: [80, 8080, 8000, 5000, 8002, 8443, 443]
packetbeat.protocols.memcache:
ports: [11211]
packetbeat.protocols.mysql:
ports: [3306]
packetbeat.protocols.pgsql:
ports: [5432]
packetbeat.protocols.redis:
ports: [6379]
packetbeat.protocols.thrift:
ports: [9090]
packetbeat.protocols.mongodb:
ports: [27017]
packetbeat.protocols.nfs:
ports: [2049]
output.logstash:
hosts: ["localhost:9200"]
logging.to_files: false
heartbeat:
config:
heartbeat.monitors:
- type: http
urls: ["http://localhost:9200"]
schedule: "@every 10s"
output.elasticsearch:
hosts: ["localhost:9200"]
logging.to_files: false
community:
journalbeat:
config:
journalbeat:
write_cursor_state: true
cursor_state_file: .journalbeat-cursor-state
cursor_flush_period: 5s
pending_queue.file: .journalbeat-pending-queue
pending_queue.flush_period: 1s
pending_queue.completed_queue_size: 8192
clean_field_names: true
convert_to_numbers: false
units: ["httpd.service"] # can also be ["*.service"]
default_type: journal
max_procs: 2
queue_size: 1000
name: journalbeat
fields_under_root: true
fields:
env: live
processors:
- drop_event:
when:
equals:
unit.name: "mysql.service"
output.logstash:
hosts: ["localhost:9200"]
logging.to_files: false