Enable tls logstash

devops_training · September 17, 2024, 10:27am

  if [type] == "traffic" {
    elasticsearch {
      ecs_compatibility => disabled
      hosts => ["https://***********************************:443"]
      index => "${NODE_ROLE}-traffic-%{+YYYY.MM.dd}"
      ssl => true
      ssl_certificate_verification => false
      cacert => "/opt/example/Sectigo.pem"
    }
  }
  else {
    elasticsearch {
      ecs_compatibility => disabled
      hosts => ["https://*****************************:443"]
      index => "${NODE_ROLE}-%{+YYYY.MM.dd}"
      ssl => true
      ssl_certificate_verification => false
      cacert => "/opt/example/Sectigo.pem"
    }
    }
  }
~

This works
curl --cacert "/opt/example/Sectigo.pem" --insecure https://********************************************

2024-09-12T06:39:03,409][WARN ][logstash.outputs.elasticsearch][main] Attempted to resurrect connection to dead elasticsearch instance, but got an error {:url=>"https://search-:443/", :exception=>LogStash::Outputs::elasticsearch::HttpClient::Pool::HostUnreachableError, :message=>"elasticsearch Unreachable: [https://search-:443/][Manticore::ClientProtocolException] PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target"}


I have verified the path and permission. looks good.

please advise.

Topic		Replies	Views
Logstash can't connect to elasticsearch Logstash	2	740	May 18, 2023
Logstash is unable to push logs to elasticsearch even ssl verify is set to fals Logstash	2	295	July 8, 2021
Error unable to find valid certification path Logstash	12	38656	June 9, 2021
Sending data from logstash to ElasticSearch (ECK): Certificate issue Logstash	1	394	April 30, 2021
Logstash unable to connect to elasticsearch Logstash	1	313	October 5, 2021

Enable tls logstash

Related topics