I am running windows 10 as my main OS and Ubuntu in Vm ware.. I have installed ELK on ubuntu and now I want to move Sysmon/winlogbeat logs to logstash but I am getting the error ..
every thing is running .. E,L,K
It looks like a networking problem between your VM guest and the Windows host.
Make sure that:
- you're using the right IP address for accessing the VM from the Windows OS
- traffic to Logstash port is allowed from outside the VM
- Logstash is listening on all interfaces (
0.0.0.0) and not tolocalhost/127.0.0.1.
everything in Logstash.yml is commented out which means every setting is default. now what's default listening setting for logstash ?
and as far as the traffic from outside issue is concerned I think it's allowed coz I can ping it from outside.
Check your ubuntu with these CLIs:
netstat -lntp
iptables -LThis topic was automatically closed 28 days after the last reply. New replies are no longer allowed.