diff --git a/Filebeat/Dockerfile b/Filebeat/Dockerfile
new file mode 100644
index 0000000..af42363
--- /dev/null
+++ b/Filebeat/Dockerfile
@@ -0,0 +1,2 @@
+FROM docker.elastic.co/beats/filebeat:8.6.2
+COPY --chown=root:filebeat filebeat.docker.yml /usr/share/filebeat/filebeat.yml
\ No newline at end of file
diff --git a/Filebeat/filebeat.docker.yml b/Filebeat/filebeat.docker.yml
new file mode 100644
index 0000000..9176ace
--- /dev/null
+++ b/Filebeat/filebeat.docker.yml
@@ -0,0 +1,22 @@
+filebeat.config:
+  modules:
+    path: ${path.config}/modules.d/*.yml
+    reload.enabled: false
+
+filebeat.autodiscover:
+  providers:
+    - type: docker
+      hints.enabled: true
+
+processors:
+- add_cloud_metadata: ~
+
+output.elasticsearch:
+  hosts: '${ELASTICSEARCH_HOSTS:elc-0.zipper.release11.com:9200}'
+  index: 'xmltools-dev-%{+yyyy.MM}'
+
+
+setup.template:
+  name: 'xmltools-dev'
+  pattern: 'xmltools-*'
+  enabled: false
\ No newline at end of file