I have to enable SSL/TLS in Filebeat configuration to encrypt communication to Logstash.
Right now my ELK cluster use SSL/TLS configuration between nodes with self-signed certificates. Logstash is started on each ELK node.
Certs were generated on the first node of ELK cluster through:
bin/elasticsearch-certutil cert ca --pem --in /tmp/instance.yml --out /tmp/certs/certs.zip
File instance.yml included list of ELK nodes. Command elasticsearch-certutil generated certs for each node like this:
The question is how to generate certs for machines where filebeat is installed?
Do you have any experience with such configuration?