Trying to use Autodiscover for both filebeat and metricbeat on AWS ECS cluster.
However, I am getting /var/run/docker.sock/ Operation not committed when attempting to run both manually and with a task definition. I have mounted /var/run/docker.sock to /var/run/docker.sock in the task definition, from host to container.
Here is the relevant portion of my filebeat:
filebeat.autodiscover:
providers:
- type: docker
templates:
- condition:
contains.docker.container.image: ["image1", "image2", "image3"]
And the output (when running ./metricbeat or ./filebeat in a container with docker.sock mounted:
sh-4.2$ ./metricbeat
metricbeat2018/01/08 18:31:23.302787 cloudid.go:42: INFO Setting Elasticsearch and Kibana URLs based on the cloud id: output.elasticsearch.hosts=https://host and setup.kibana.host=https:/host
Exiting: Got permission denied while trying to connect to the Docker daemon socket at unix:///var/run/docker.sock: Get http://%2Fvar%2Frun%2Fdocker.sock/v1.22/containers/json?limit=0: dial unix /var/run/docker.sock: connect: permission denied
Is this impossible on AWS?
I have tried running privileged as root, and get a docker.sock not found.
Note: it should not be relevant I don't think, but I am using elastic.co's hosted elasticsearch solution.