Logstash Event Enrichment: Fast and Flexible

Logstash comes with a large and vibrant plugin eco-system. This includes a number of plugins that are often used to enrich events with additional information, especially for network or security related data feeds. It is however not always easy to decide which plugins are most appropriate for a specific use-case.

Guy Boertje and Christian Dahlqvist present use-cases, best practices and practical tips for these plugins, that will allow you to add a number of useful plugins to your Logstash plugin toolbelt.

Highlights include:

  • Flexible enrichment using the translate plugin
  • Adding data from relational databases and Elasticsearch
  • Enriching network data

Related Resources:

Register to Watch

You'll also receive an email with related content

Guy Boertje

Guy Boertje joined Elastic in 2015 from the London Tech Startup and Fintech scenes. Guy has been in technology for most of his life covering avionics, industrial, entertainment and the software industry. In his spare time he climbs short rocks and hits long golf balls.

Christian Dahlqvist

Christian Dahlqvist is a Product Marketing Engineer at Elastic, responsible for creating demos and other types of technical content. This includes working closely with field and engineering teams, developing recommendations and best practices around deployment architecture, sizing, benchmarking, and performance.