ELK in docker - fleet server on the host

Dear all,
Sorry for asking a question allready seen question but not enough details to solve the pb.

I install elk in docker according to the doc

Docker is running on a host
Docker network is
(Elasticsearch in a container : IP and kibana in another container IP:
ELK version 8.10.4

Then installing Fleet A fleet server (on the host itself:IP

 sudo ./elastic-agent install \
  --fleet-server-es= \
  --fleet-server-service-token=XXXXXXXXXXXXXXXXXXXX \
  --fleet-server-policy=fleet-server-policy \
  --fleet-server-es-ca-trusted-fingerprint=XXXXXXXXXXXXXX \

Everything is fine - get logs

Now trying to add an agent on another linux server
Registering without any problem (with option insecure)
But not logs.

  1. My Hypothesis is that the agent is using as the output.
    As this is on the internal docker network is fails. Is this correct ?

  2. According to some other posts. I tried to change the output to
    (comment the line xpack.fleet.outputs: [....
    in kibana.yaml

Now I can define the default output to
Now I can register fleet server (with install option --fleet-server-es-insecure)

But now no logs from the agent on the host...

So my questions:
In order to accept agents and to get logs from the fleet server on the host AND from agents on some other machines
1° What is the recommended configuration ?
2° When changing the output, what is the command to renew the certificate properly.

Thank you for your attention.
Best regards,

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.