input {
    http {
    }
}
filter {
    grok {
        match => {"log" => "%{COMBINEDAPACHELOG}"}
    }
    grok {
        pattern_definitions => {
            "CUSTOMYEAR" => "(?>\d\d){1,2}"
            "CUSTOMMINUTE" => "(?:[0-5][0-9])"
        }
        match => {"otherlog" => "%{DATA:message} %{CUSTOMYEAR:year} %{CUSTOMMINUTE:minute}"}
    }
}
output {
    elasticsearch {
        hosts => ["https://localhost:9200"]
        user => admin
        password => mypassword
        index => "logingest"
    }
    amazon_es {
        hosts => ["fakedomain.us-east-1.es.amazonaws.com"]
        region => "us-east-1"
        index => "logingest"
    }
}