logstash config file that work with 5.2.2 and older versions of logstash. tested on windows 2012 platform
configure fireall to send log to your hosts ip adr. standard is udp port 514
start with logstash.bat -f [.conf file] of you get an error try with elevated rights
its recommended that its run as a service, use nssm.exe for instance, to ensure persistense for logstash, kibana and elasticsearch when the host is being rebooted (patching etc.)
if anyone gets it working with geoip location please contribute.