Alerting with Logstash

diwertowski · April 14, 2016, 9:31am

Hi,
I'll do an ELK-Stack with an alertingsystem.
So my suggestion was somthing like this:

Shipper => Redis => Indexer => ES <= Alerting (Logstash)

Can Logstash read logstash(Alerting) read or use logfiles, if my configfile looks like this:

input {
   elasticsearch {...}
}
output {
   email {...}
}

or is this the complete wrong way?

magnusbaeck · April 15, 2016, 6:09am

Don't do this. Logstash won't make a good alerting system. Either use Elastic's own Watcher or use a proper alerting system like Nagios or Icinga and have it poll ES.

diwertowski · April 15, 2016, 6:26am

Hi @magnusbaeck,

thanks for your reply! I'll check the products you've said.

Thank you!

Topic		Replies	Views
How to create an alerting using the ELK stack(email alerting only) Logstash	6	12131	July 6, 2017
Alerting in ELK stack? Elasticsearch	10	2782	July 6, 2017
Best blueprint/architecture/best practice to monitor Logstash pipelines with alerts in Kibana? Logstash elastic-stack-alerting	1	285	March 27, 2021
ELK stack and monitoring/alerting Elasticsearch	4	2205	July 6, 2017
Is ELK itself capable of keeping track of certain events & alerting? Logstash	5	297	July 21, 2020

Alerting with Logstash

Related topics