Filebeat + Kafka error

kamandohl · November 28, 2017, 10:24am

I have Googled enough, but unable to find the error I am currently seeing.

Filebeat - 5.6.4 and 6.0.0
Kafka - 10.1

2017/11/27 13:10:03.602226 log.go:16: WARN kafka message: Initializing new client
2017/11/27 13:10:03.602342 log.go:12: WARN client/metadata fetching metadata for all topics from broker localhost
2017/11/27 13:10:03.603931 log.go:12: WARN Connected to broker at localhost (unregistered)
2017/11/27 13:10:03.605022 log.go:16: WARN kafka message: client/metadata got error from broker while fetching metadata:%!(EXTRA *errors.errorString=unexpected EOF)
2017/11/27 13:10:03.605074 log.go:12: WARN Closed connection to broker localhost
2017/11/27 13:10:03.611668 log.go:12: WARN client/brokers resurrecting 3 dead seed brokers
2017/11/27 13:10:03.611682 log.go:12: WARN client/metadata retrying after 250ms... (3 attempts remaining)

filebeat.yml

filebeat.prospectors:

type: log
enabled: true
- /tmp/test.log

output.kafka:
enabled: true
hosts: ["localhost1:9093","localhost2","localhost3:9093"]
topic: '%{[type]}'
ssl:
ssl.certificate_authorities: "ca.pem"
ssl.certificate: : "cert.pem"
ssl.key: "key.pem"
key_passphrase: *****

steffens · November 28, 2017, 2:39pm

Please format logs and configs using the </>-button to make your post more readable (configs are sensitive to indentation, without formatting it's hard to check configs being correct).

The broker is closing the connection. Have you check the kafka logs?
The SSL/TLS settings must be configured via ssl namespace, not tls. Looks like you the beat is trying plain text connection, while kafka is expecting a SSL/TLS handshake.
remove duplicates from hosts setting. As you only have one broker, remove the others. The hosts setting is required for cluster connection bootstrapping only (get metadata to find all nodes in a cluster).
From you configs it looks like you want to have client authentication. But I'm missing the CA configuration for accepting the servers certificates.

Can you try without TLS first? Then add TLS server authentication and finally enable client authentication? In general properly setting up (or worse debugging) TLS can be somewhat difficult at times, better do it step by step.

system · December 26, 2017, 2:40pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kafka Connection Failure Beats filebeat	1	478	June 26, 2023
Three types of WARN/ERRORs in filebeat logs Beats filebeat	11	3520	November 24, 2017
Filebeat connect kafka failed over ssl Beats filebeat	4	3218	February 21, 2018
[bug] filebeat can't send data to kafka cluster when one kafka can't connect because of network Beats	6	5120	August 19, 2016
Filebeat certificate error with kafka output + replicats Beats filebeat	3	1241	October 11, 2017

Filebeat + Kafka error

Related Topics