Convert Filebeat's traefik.access to ECS. (#9005)

* Translate fields to ECS in ingest node pipeline and Beat processor

* Document ECS field transitions in ecs-migration.yml

* Continue translating fields to ECS

* Alias the migrated fields

* Changelog

CHANGELOG.asciidoc

@@ -24,6 +24,7 @@ https://github.com/elastic/beats/compare/v7.0.0-alpha2...master[Check the HEAD d
 *Filebeat*
 
 - Modify apache/error dataset to follow ECS. {pull}8963[8963]
+- Rename many `traefik.access.*` fields to map to ECS. {pull}9005[9005]
 
 *Heartbeat*
 

dev-tools/ecs-migration.yml

@@ -503,6 +503,72 @@
   to: log.level
   alias: true
 
+## Traefik module
+
+- from: traefik.access.remote_ip
+  to: source.address
+  alias: true
+
+- from: traefik.access.url
+  to: url.original
+  alias: true
+
+- from: traefik.access.user_name
+  to: user.name
+  alias: true
+
+- from: traefik.access.agent
+  to: user_agent.original
+  alias: true
+
+- from: traefik.access.user_agent.original
+  to: user_agent.original
+  alias: true
+
+- from: traefik.access.user_agent.*
+  to: user_agent.*
+  alias: true
+
+- from: traefik.access.geoip.continent_name
+  to: source.geo.continent_name
+  alias: true
+
+- from: traefik.access.geoip.country_iso_code
+  to: source.geo.country_iso_code
+  alias: true
+
+- from: traefik.access.geoip.location
+  to: source.geo.location
+  alias: true
+
+- from: traefik.access.geoip.region_name
+  to: source.geo.region_name
+  alias: true
+
+- from: traefik.access.geoip.city_name
+  to: source.geo.city_name
+  alias: true
+
+- from: traefik.access.geoip.region_iso_code
+  to: source.geo.region_iso_code
+  alias: true
+
+- from: traefik.access.method
+  to: http.request.method
+  alias: true
+
+- from: traefik.access.response_code
+  to: http.response.status_code
+  alias: true
+
+- from: traefik.access.referrer
+  to: http.request.referrer
+  alias: true
+
+- from: traefik.access.http_version
+  to: http.version
+  alias: true
+
 # Auditbeat
 
 ## From Auditbeat's auditd module.