Configuration

server:
  http_listen_network: tcp
  http_listen_address: ""
  http_listen_port: 9080
  http_listen_conn_limit: 0
  grpc_listen_network: tcp
  grpc_listen_address: ""
  grpc_listen_port: 0
  grpc_listen_conn_limit: 0
  http_tls_config:
    cert_file: ""
    key_file: ""
    client_auth_type: ""
    client_ca_file: ""
  grpc_tls_config:
    cert_file: ""
    key_file: ""
    client_auth_type: ""
    client_ca_file: ""
  register_instrumentation: true
  graceful_shutdown_timeout: 30s
  http_server_read_timeout: 30s
  http_server_write_timeout: 30s
  http_server_idle_timeout: 2m0s
  grpc_server_max_recv_msg_size: 4194304
  grpc_server_max_send_msg_size: 4194304
  grpc_server_max_concurrent_streams: 100
  grpc_server_max_connection_idle: 2562047h47m16.854775807s
  grpc_server_max_connection_age: 2562047h47m16.854775807s
  grpc_server_max_connection_age_grace: 2562047h47m16.854775807s
  grpc_server_keepalive_time: 2h0m0s
  grpc_server_keepalive_timeout: 20s
  grpc_server_min_time_between_pings: 5m0s
  grpc_server_ping_without_stream_allowed: false
  log_format: logfmt
  log_level: info
  log_source_ips_enabled: false
  log_source_ips_header: ""
  log_source_ips_regex: ""
  http_path_prefix: ""
  external_url: ""
  health_check_target: null
  disable: false
client:
  url: ""
  batchwait: 1s
  batchsize: 1048576
  follow_redirects: false
  backoff_config:
    min_period: 500ms
    max_period: 5m0s
    max_retries: 10
  timeout: 10s
  tenant_id: ""
  stream_lag_labels: filename
clients:
- url: https://loki:%2A%2A%2A%2A%2A%2A%2A%2A@loki.forward.lc/loki/api/v1/push
  batchwait: 1s
  batchsize: 1048576
  follow_redirects: false
  backoff_config:
    min_period: 500ms
    max_period: 5m0s
    max_retries: 10
  external_labels: |
    env: prod
    node_name: cloud.forward.lc
  timeout: 10s
  tenant_id: ""
  stream_lag_labels: filename
positions:
  sync_period: 10s
  filename: /var/lib/promtail/positions.yml
  ignore_invalid_yaml: false
scrape_configs:
- job_name: system
  pipeline_stages:
  - match:
      selector: '{job="packetbeat"}'
      stages:
      - json:
          expressions:
            domain: server.domain
            http_status: http.response.status_code
            network_direction: network.direction
            network_protocol: network.protocol
            network_transport: network.transport
            network_type: network.type
            request: request
            status: status
            time: '"@timestamp"'
      - timestamp:
          format: RFC3339Nano
          source: time
      - regex:
          expression: .*(?P<http_method>POST|GET|OPTIONS|PUT|DELETE|HEAD|CONNECT|TRACE|PATCH)
            .+ HTTP/1\..*
          source: request
      - replace:
          expression: (\W+)
          replace: ""
          source: http_method
      - labels:
          domain: null
          http_method: null
          http_status: null
          network_direction: null
          network_protocol: null
          network_transport: null
          network_type: null
          status: null
      - labeldrop:
        - filename
      - tenant:
          value: packetbeat-prod
  static_configs:
  - targets:
    - localhost
    labels:
      __path__: /var/log/packetbeat-output/output
      job: packetbeat
target_config:
  sync_period: 10s
  stdin: false