From 796bdad0ed758d6063c3f59c54a7874e23624102 Mon Sep 17 00:00:00 2001
From: Pete Fritchman <petef@databits.net>
Date: Thu, 5 Jan 2012 01:06:35 -0500
Subject: [PATCH] sample elasticsearch_river usage

---
 etc/examples/esriver.conf | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 etc/examples/esriver.conf

diff --git a/etc/examples/esriver.conf b/etc/examples/esriver.conf
new file mode 100644
index 000000000..69c8ff655
--- /dev/null
+++ b/etc/examples/esriver.conf
@@ -0,0 +1,21 @@
+input {
+  file {
+    type => "syslog"
+    path => "/var/log/messages"
+  }
+}
+
+filter {
+  grok {
+    type => "syslog"
+    pattern => ["%{SYSLOGLINE}"]
+  }
+}
+
+output {
+  stdout { }
+  elasticsearch_river {
+    es_host => "localhost"
+    amqp_host => "localhost"
+  }
+}