Docker:LogStash Graylog

DonPerinon · August 3, 2020, 3:26pm

Hi,
can anyone help me with my initial logstash+graylog configuration?

I have 4 docker container in total:
Graylog+elasticsearch+mongo
Logstash

So my idea was that I will send all my logs (nxlog inputs) to the Logstash(parser/pipeline) and then results will be sent to Graylog.
nxlog config

Module om_tcp Host 10.50.12.104 Port 5044 OutputType to_json(); Logstash container conf:` docker run --rm -it -d --user=root --name logstash -p 9600:9600 -p 5044:5044 --link graylogtest:graylog -v C:\tet\:/Config docker.elastic.co/logstash/logstash:7.8.1 logstash -f /Config/logstash.conf`

logstash.conf:

input {
tcp {
codec => json_lines { charset => CP1252 }
port => "5044"
tags => [ "tcpjson" ]
}
}
output {
stdout { codec => rubydebug }
gelf {
host => 'graylog'
port => 5414
}
}

Sending inputs directly from the nxlog to the Graylog works perfectly.
But they are two main problems with the logstash:

Gelf as output is not in the default package.
I do not receive any inputs...

Thank you for any advice.

system · August 31, 2020, 3:26pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Graylog not receiving messages sent with logstash gelf output, both running on Docker Logstash	1	1295	April 17, 2019
Docker Container Logstash not getting any logs Logstash	3	1932	August 7, 2017
Docker gelf and logstash to logstash Logstash	5	2626	July 6, 2017
Docker logging driver gelf not working Logstash	2	1024	January 24, 2019
Help getting started Logstash	1	179	May 27, 2020

Docker:LogStash Graylog

Related topics