WARNING: Version 5.3 of Filebeat has passed its EOL date.

This documentation is no longer being maintained and may be removed. If you are running this version, we strongly advise you to upgrade. For the latest information, see the current release documentation.

Elastic Docs Filebeat Reference [5.3] Exported Fields
« Nginx Fields Securing Filebeat »

System Fieldsedit

Module for parsing system log files.

system Fieldsedit

Fields from the system log files.

syslog Fieldsedit

Contains fields from the syslog system logs.

system.syslog.timestampedit

The timestamp as read from the syslog message.

system.syslog.hostnameedit

The hostname as read from the syslog message.

system.syslog.programedit

The process name as read from the syslog message.

system.syslog.pidedit

The PID of the process that sent the syslog message.

system.syslog.messageedit

The message in the log line.

« Nginx Fields Securing Filebeat »