diff --git a/README.md b/README.md
index 6fa18afc84358257c61ba0daa9dd896ef78c338c..0e4def3e8abc2091bb99ed52d230a43f53860876 100644
--- a/README.md
+++ b/README.md
@@ -26,14 +26,14 @@ The result will look like this:
  
 ### LOGSTASH HOST 
 1. copy "/conf.d/20-dns-syslog.conf" to your logstash folder (usually /etc/logstash)
-1.1. customize "<ELASTICSEARCHHOST:PORT>" in the output section at the bottom of the file
-2.copy "dns" to "/etc/logstash/patterns/"
-3. restart logstash
+2. customize "<ELASTICSEARCHHOST:PORT>" in the output section at the bottom of the file
+3.copy "dns" to "/etc/logstash/patterns/"
+4. restart logstash
 
 ### PI-HOLE
-4. copy "/etc/filebeat/filebeat.yml" to your filebeat installation at the pi-hole instance
-4.1. customize "<LOGSTASHHOST>:5141"]" to match your logstash hostname/ip
-5. restart filebeat
+5. copy "/etc/filebeat/filebeat.yml" to your filebeat installation at the pi-hole instance
+6. customize "<LOGSTASHHOST>:5141"]" to match your logstash hostname/ip
+7. restart filebeat
 
 ### KIBANA HOST (CAN BE THE SAME AS LOGSTASH AND ELK)
 import "elk-hole.json" into kibana: management - saved objects - import