Logstash: Large-scale logging
System logs are great; you can see exactly what’s happened or what’s
happening on your system. The problem arises once you step up to more
than a handful of systems. The massive mass of massively massive log
files is simply too much for grep and/or your sanity to handle. This is
were Logstash comes in. In a nutshell Logstash allows any number of a
variety of inputs to then be modified to the user’s preferences (uniform
time-stamps for example) and then shipped out to plethora of outputs.
One of these outputs is ElasticSearch which indexes all of the entries
and makes them instantly searchable (All through a snazzy ui which will
also be covered)