and I've setup Filebeat on my Windows 10 client machine.
It looks like all the installations are fine, and I'm able to start all services.
But no data seems to be inserted into Elasticsearch. I'm not sure what's going wrong.
I see these indexes:
green open .kibana_task_manager_1 MNLTzyjNQk2_DBwLbLAUjQ 1 0 2 0 13.3kb 13.3kb
green open kibana_sample_data_ecommerce MD4yCUShR4KJi0qzrWo1lQ 1 0 4675 0 4.4mb 4.4mb
green open .apm-agent-configuration bqpM6GzVS7mJJNtxbWrVvg 1 0 0 0 283b 283b
green open .kibana_1 9S6hqlJnS2KxsKPYh1viyw 1 0 74 7 954.3kb 954.3kb
On viewing Kibana, in the browser: http://127.0.0.1:5601/ and then selecting "Index Patterns", I see only
kibana_sample_data_ecommerce
and I don't see anything related to filebeat*
On the Client machine:
Filebeat is installed and configured correctly.
I've enabled logstash output with the correct IP and port address.
What could be wrong? I should be able to see the indices getting created and then be able to query for data.
Please format your code and check it in the preview window. It can be hard to read and people might skip your post. Use triple-backsticks ``` above and below the text. It should then look like this:
As you can see in the filebeat log file, the path for the logs is not C:\ProgramData\filebeat, it is C:\Program Files\Filebeat\logs. Please share the content of the log file from there.
'''
2019-11-28T15:44:23.248+0530 INFO [publisher] pipeline/module.go:97 Beat name: Something
2019-11-28T15:44:23.250+0530 INFO elasticsearch/client.go:170 Elasticsearch url: http://192.168.103.84:9200
2019-11-28T15:44:25.269+0530 ERROR elasticsearch/elasticsearch.go:260 Error connecting to Elasticsearch at http://192.168.103.84:9200: Get http://192.168.103.84:9200: dial tcp 192.168.103.84:9200: connectex: No connection could be made because the target machine actively refused it.
2019-11-28T15:44:25.269+0530 ERROR instance/beat.go:878 Exiting: Couldn't connect to any of the configured Elasticsearch hosts. Errors: [Error connection to Elasticsearch http://192.168.103.84:9200: Get http://192.168.103.84:9200: dial tcp 192.168.103.84:9200: connectex: No connection could be made because the target machine actively refused it.]
'''
Please note that on the m/c where ELK is installed has the firewall disabled, and I've also added firewall rules to allow incoming to ELK. So, I'm not sure why this error occurs.
Also, I'm able to ping the ELK m/c from my client m/c.
Thanks.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.