Udemy
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
Development
Web Development Data Science Mobile Development Programming Languages Game Development Database Design & Development Software Testing Software Engineering Development Tools No-Code Development
Business
Entrepreneurship Communications Management Sales Business Strategy Operations Project Management Business Law Business Analytics & Intelligence Human Resources Industry E-Commerce Media Real Estate Other Business
Finance & Accounting
Accounting & Bookkeeping Compliance Cryptocurrency & Blockchain Economics Finance Finance Cert & Exam Prep Financial Modeling & Analysis Investing & Trading Money Management Tools Taxes Other Finance & Accounting
IT & Software
IT Certification Network & Security Hardware Operating Systems Other IT & Software
Office Productivity
Microsoft Apple Google SAP Oracle Other Office Productivity
Personal Development
Personal Transformation Personal Productivity Leadership Career Development Parenting & Relationships Happiness Esoteric Practices Religion & Spirituality Personal Brand Building Creativity Influence Self Esteem & Confidence Stress Management Memory & Study Skills Motivation Other Personal Development
Design
Web Design Graphic Design & Illustration Design Tools User Experience Design Game Design Design Thinking 3D & Animation Fashion Design Architectural Design Interior Design Other Design
Marketing
Digital Marketing Search Engine Optimization Social Media Marketing Branding Marketing Fundamentals Marketing Analytics & Automation Public Relations Advertising Video & Mobile Marketing Content Marketing Growth Hacking Affiliate Marketing Product Marketing Other Marketing
Lifestyle
Arts & Crafts Beauty & Makeup Esoteric Practices Food & Beverage Gaming Home Improvement Pet Care & Training Travel Other Lifestyle
Photography & Video
Digital Photography Photography Portrait Photography Photography Tools Commercial Photography Video Design Other Photography & Video
Health & Fitness
Fitness General Health Sports Nutrition Yoga Mental Health Dieting Self Defense Safety & First Aid Dance Meditation Other Health & Fitness
Music
Instruments Music Production Music Fundamentals Vocal Music Techniques Music Software Other Music
Teaching & Academics
Engineering Humanities Math Science Online Education Social Science Language Teacher Training Test Prep Other Teaching & Academics
AWS Certification Microsoft Certification AWS Certified Solutions Architect - Associate AWS Certified Cloud Practitioner CompTIA A+ Cisco CCNA Amazon AWS CompTIA Security+ AWS Certified Developer - Associate
Graphic Design Photoshop Adobe Illustrator Drawing Digital Painting InDesign Character Design Canva Figure Drawing
Life Coach Training Neuro-Linguistic Programming Personal Development Mindfulness Life Purpose Meditation Personal Transformation Neuroscience Emotional Intelligence
Web Development JavaScript React CSS Angular PHP WordPress Node.Js Python
Google Flutter Android Development iOS Development Swift React Native Dart Programming Language Mobile Development Kotlin SwiftUI
Digital Marketing Google Ads (Adwords) Social Media Marketing Google Ads (AdWords) Certification Marketing Strategy Internet Marketing YouTube Marketing Email Marketing Retargeting
SQL Microsoft Power BI Tableau Business Analysis Business Intelligence MySQL Data Modeling Data Analysis Big Data
Business Fundamentals Entrepreneurship Fundamentals Business Strategy Online Business Business Plan Startup Freelancing Blogging Home Business
Unity Game Development Fundamentals Unreal Engine C# 3D Game Development C++ 2D Game Development Unreal Engine Blueprints Blender
30-Day Money-Back Guarantee
Development Software Engineering Logstash

Data Processing with Logstash (and Filebeat)

Process data with Logstash, which is a key part of the ELK stack (Elasticsearch, Logstash, Kibana) and Elastic Stack.
Rating: 4.4 out of 54.4 (1,325 ratings)
9,004 students
Created by Bo Andersen
Last updated 7/2020
English
English [Auto]
30-Day Money-Back Guarantee

What you'll learn

  • Understand the fundamental concepts of Logstash
  • Build pipelines that process and manipulates thousands of events
  • Send data to Logstash from numerous sources and to several destinations
  • Build a fully functional pipeline that handles Apache web server logs
  • Process Filebeat events with Logstash
Curated for the Udemy for Business collection

Course content

5 sections • 53 lectures • 5h 30m total length

  • Preview04:29
  • Preview04:32
  • Preview05:05
  • Installing Logstash on Windows
    00:27

  • Preview10:55
  • Preview04:52
  • Preview04:06
  • Working with HTTP input
    07:22
  • Filtering events
    05:34
  • Common filter options
    02:59
  • Understanding the Logstash execution model
    07:28
  • Section wrap up
    00:29

  • Introduction to this section
    01:12
  • Automatic config reload & file input
    10:43
  • Parsing requests with Grok
    12:51
  • Finishing the Grok pattern
    08:59
  • Accessing field values
    04:20
  • Formatting dates
    02:15
  • Setting the time of the event
    04:57
  • Introduction to conditional statements
    03:18
  • Working with conditional statements
    10:00
  • Geographical data enrichment
    04:06
  • Parsing user agents
    03:19
  • Finishing up the pipeline
    07:48
  • Sending processed events to Elasticsearch
    09:27
  • Handling multiline events
    16:30
  • Handling multiline events - the easy way
    05:09
  • Parsing stack traces with Grok
    06:12
  • Working with @metadata
    04:55
  • Running multiple pipelines
    12:22

  • Preview04:35
  • Preview01:40
  • Installing Filebeat
    02:24
  • Configuring Filebeat to use Logstash
    02:35
  • Enabling the apache module
    05:34
  • Preparing a simple Logstash pipeline
    03:58
  • Starting up Filebeat and processing logs
    05:33
  • Adding the Elasticsearch index template
    11:22
  • Adding Kibana dashboards
    04:43
  • Finishing up the pipeline
    21:11
  • How Filebeat works
    12:09
  • Clearing the registry
    06:53
  • Processing more access logs
    03:48
  • Manual input configuration
    09:55
  • Evaluation of modules
    02:39
  • Tagging events
    02:47
  • Approaches for handling multiple log types
    06:01
  • Processing Apache error logs
    13:57
  • Handling multiline logs - approach #1
    09:09
  • More multiline options
    02:57
  • Handling multiline logs - approach #2
    07:00
  • Wrap up
    02:02

  • You have reached the end!
    01:10

Requirements

  • Familiarity with basic terminal/command prompt usage is a plus

Description

NEW! This course now also includes Filebeat and how to integrate it with Logstash, Elasticsearch, and Kibana!

Want to learn how to process events with Logstash? Then you have come to the right place; this course is by far the most comprehensive course on Logstash here at Udemy! This course specifically covers Logstash, meaning than we can go into much more detail than if this course covered the entire Elastic Stack. So if you want to learn Logstash specifically, then this course is for you!

This course assumes no prior knowledge of or experience with Logstash. We start from the very basics and gradually transition into more advanced topics. The course is designed so that you can follow along the whole time step by step, and you can find all of the configuration files within a GitHub repository. The course covers topics such as handling Apache web server logs (both access and error logs), data enrichment, sending data to Elasticsearch, visualizing data with Kibana, along with covering a number of popular use cases that you are likely to come across. Upon completing this course, you will know all of the most important aspects of Logstash, and will be able to build complex pipeline configurations and process many different kinds of events and data.

What is Logstash?
In case you don't know what Logstash is all about, it is an event processing engine developed by the company behind Elasticsearch, Kibana, and more. Logstash is often used as a key part of the ELK stack or Elastic Stack, so it offers a strong synergy with these technologies. You can use Logstash for processing many different kinds of events, and an event can be many things. You can process access or error logs from a web server, or you can send events to Logstash from an e-commerce application, such as when an order was received or a payment was processed. You can ingest data from files (flat files, JSON, XML, CSV, etc.), receive data over HTTP or TCP, retrieve data from databases, and more. Logstash then enables you to process and manipulate the events before sending them to a destination of your choice, such as Elasticsearch, e-mail, or Slack.

Why do we need Logstash?
Because by sending events to Logstash, you decouple things. You effectively move event processing out of the web application and into Logstash, meaning that if you need to change how events are processed, you don’t need to deploy a new version of a web application, for instance. The event processing and its configuration is centralized within Logstash instead of every place you trigger events. This means that all the web application needs to do, is to send an event to Logstash; it doesn’t need to know anything about what happens to the event afterwards and where it ends up. This improves your architecture and lets Logstash do what it does best; process events.

Let's get started!
I hope that you are ready to begin learning Logstash. Have a look around the curriculum if you want to check out the course content in more details. I look forward to seeing you inside the course!

Who this course is for:

  • Developers who want to learn Logstash

Featured review

Juhan Aasaru
Juhan Aasaru
11 courses
6 reviews
Rating: 5.0 out of 5a year ago
Good course for learning Logstash. I find it good that it doesn't go into tiny details (as there are tons of those) but rather gives understanding of the whole process. I'm an experienced developer but this technology is new to me and for me the difficlty level is just perfect - it is not too basic and it is not too difficult as the new concepts are introduced logically as the course advances.

Instructor

Bo Andersen
Lead Developer
Bo Andersen
  • 4.5 Instructor Rating
  • 15,112 Reviews
  • 72,002 Students
  • 5 Courses

My name is Bo Andersen and I am a software engineer from Denmark.

I currently work as the lead developer and partner at a startup company, apart from teaching here at Udemy. I have previously worked at a very successful company, operating one of the largest websites in Denmark, before deciding to teach software engineering. I have worked with programming for a decade and have a bachelor's degree in computer science. I started out learning to code by building websites in PHP, but have since worked with many other technologies such as Elasticsearch, Logstash, Kibana, Beats, Java, Python, Docker, AWS, etc.

I have also been blogging about programming subjects for a number of years, so I encourage you to have a look at my website if you are curious.

  • Udemy for Business
  • Teach on Udemy
  • Get the app
  • About us
  • Contact us
  • Careers
  • Blog
  • Help and Support
  • Affiliate
  • Terms
  • Privacy policy
  • Cookie settings
  • Sitemap
  • Featured courses
Udemy
© 2021 Udemy, Inc.