Can not connect Logstash to Elasticsearch

liaotoca · October 26, 2023, 8:40pm

I follow the instructions here Secure your connection to Elasticsearch | Logstash Reference [8.10] | Elastic but if I did not put the username/password, logstash reported 401, if I put in the user name /password, the start up of logstash stalled at "Starting server on port: 5044"

Start command:

C:\ELK\logstash-8.10.4>.\bin\logstash -f first-ssl-pipeline.conf --config.reload.automatic

The content of first-ssl-pipeline.conf:

input {
beats {
port => "5044"
}
}
filter {
grok {
match => { "message" => "%{COMBINEDAPACHELOG}"}
}
}
output {
elasticsearch {
hosts => ["https://localhost:9200"]
cacert => 'C:\ELK\logstash-8.10.4\config\certs\http_ca.crt'
user => logstash_internal
password => root123
}
}

TimV · October 29, 2023, 11:15am

Why do you think it's stalled? Are you expecting additional messages?

It's been a while since I've run logstash, but I don't recall it being very verbose on startup.

system · November 26, 2023, 11:15am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.