Hello ,
I am new to fluentd . i need some help on segregation of specific container logs to cloud-watch logs groups .
Currently , i have the setup the fluentd setup on my EKS cluster , from where i am pushing all the cluster logs to cloudwatch . Thats seems to be Ok .
Now i need to check if the we could send specific logs which are created inside the container var/audit/ like below to specific log groups .
access.audit.json
activity.audit.json
authentication.audit.json
config.audit.json
currently every log files are unified and aggregated .
I need to segregate few specifc files in fluentD and sent it to cloudwatch .
Please let me know if someone has any details or good blog to implement it .
Thanks in advance.
Br,
Paras