diff --git a/packages/filestream/agent/input/filestream.yml.hbs b/packages/filestream/agent/input/filestream.yml.hbs
index 1de490e4fe3..2089aae9a9f 100644
--- a/packages/filestream/agent/input/filestream.yml.hbs
+++ b/packages/filestream/agent/input/filestream.yml.hbs
@@ -1,5 +1,5 @@
 {{#if use_logs_stream}}
-index: logs
+index: logs.ecs
 {{else}}
 
 data_stream:
diff --git a/packages/filestream/changelog.yml b/packages/filestream/changelog.yml
index 2139e374f2b..e633a1ca63a 100644
--- a/packages/filestream/changelog.yml
+++ b/packages/filestream/changelog.yml
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "2.4.0"
+  changes:
+    - description: 'Use the `logs.ecs` index instead of `logs` when "Use logs data stream" is enabled.'
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/17909
 - version: "2.3.3"
   changes:
     - description: Remove duplicated ECS mappings from package template
diff --git a/packages/filestream/manifest.yml b/packages/filestream/manifest.yml
index a48262f5e76..9e4ee560dfd 100644
--- a/packages/filestream/manifest.yml
+++ b/packages/filestream/manifest.yml
@@ -3,10 +3,10 @@ name: filestream
 title: Custom Logs (Filestream)
 description: Collect log data using filestream with Elastic Agent.
 type: input
-version: 2.3.3
+version: 2.4.0
 conditions:
   kibana:
-    version: "^9.2.0"
+    version: "^9.4.0"
 categories:
   - custom
   - custom_logs
@@ -40,9 +40,9 @@ policy_templates:
           When enabled, filestream will decompress GZIP-compressed files (.gz) as they are read. For full details, see the [documentation](https://www.elastic.co/docs/reference/beats/filebeat/filebeat-input-filestream#reading-gzip-files). If enabled, you **must** also remove the '\.gz$' pattern from the "Exclude Files" setting to ensure `.gz` files are ingested. Available for Elastic Agent 9.2.0 in beta and for Elastic Agent 9.3.0 or newer in GA.
       - name: use_logs_stream
         type: bool
-        title: Use the "logs" data stream
+        title: Use the "logs.ecs" data stream
         description: |
-          When enabled, data ingested by this integration is written to the "logs" data stream. **The 'Ingest Pipeline' and the configured 'Dataset name' are ignored**. You also need to [Turn on wired streams](https://www.elastic.co/docs/solutions/observability/streams/wired-streams#streams-wired-streams-enable) in Streams [Settings](/app/streams) and to enable **Allow agents to write to Streams** for the output policy in the Fleet [Settings](/app/fleet/settings) tab. [Learn more](https://www.elastic.co/docs/solutions/observability/streams/wired-streams).
+          When enabled, data ingested by this integration is written to the "logs.ecs" data stream. **The 'Ingest Pipeline' and the configured 'Dataset name' are ignored**. You also need to [Turn on wired streams](https://www.elastic.co/docs/solutions/observability/streams/wired-streams#streams-wired-streams-enable) in Streams [Settings](/app/streams) and to enable **Allow agents to write to Streams** for the output policy in the Fleet [Settings](/app/fleet/settings) tab. [Learn more](https://www.elastic.co/docs/solutions/observability/streams/wired-streams).
         required: false
         show_user: true
         default: false