jtschichold
commented
7 years ago Sorry for the late reply. You can send output to a remote logstash by creating a new local prototype based on stdlib.localLogstash (click on NEW in the prototype detail page) and changing the address of logstash. See the prototype here: https://github.com/PaloAltoNetworks/minemeld-node-prototypes/blob/master/prototypes/stdlib.yml#L803
Once you have created a new local prototype you can create a new node based on that.
Thank you