Open hailrend opened 1 year ago
Hey @hailrend,
I just have succeeded using this configuration:
package_policies:
- package:
name: kubernetes
name: kubernetes
inputs:
- type: filestream
enabled: true
streams:
- data_stream:
dataset: kubernetes.container_logs
enabled: true
vars:
- name: processors
value: |-
- add_fields:
fields:
name: ${env.KUBERNETES_CLUSTER}
target: kubernetes.cluster
Hope it helps
NB: I'm also using the ECK Operator and what drove me crazy is that updating a policy does not work, you have to recreate it to see the modifications
Hi! We just realized that we haven't looked into this issue in a while. We're sorry! We're labeling this issue as Stale
to make it hit our filters and make sure we get back to it as soon as possible. In the meantime, it'd be extremely helpful if you could take a look at it as well and confirm its relevance. A simple comment with a nice emoji will be enough :+1
. Thank you for your contribution!
Hi everybody. I'm facing a problem with the kubernetes integration on the Kibana operator instance. I should modify the default values of the integration, but I cannot understand what the structure of the inputs is, could somebody explain it to me or guide me to a reference? I should practically add some processors and enable some other fields
This is the whole Kibana crd
The part that is driving me crazy is this one
How am I supposed to configure the inputs?