$ curl -v --cacert ca.crt https://logs.andrewkroh.com:5044 $ curl: (52) Empty reply from server
Starting Filebeat (which works with TLS turned off for both Logstash and Filebeat), however, results in this error:
2016/03/22 07:48:32.846449 publish.go:88: INFO Start sending events to output 2016/03/22 07:48:32.846759 log.go:113: INFO Harvester started for file: /var/log/messages 2016/03/22 07:48:35.360607 single.go:76: INFO Error publishing events (retrying): write tcp 192.168.0.56:51704->192.168.0.56:5043: write: broken pipe 2016/03/22 07:48:35.360650 single.go:152: INFO send fail 2016/03/22 07:48:35.360666 single.go:159: INFO backoff retry: 1s
Can anyone offer assistance with this? Tomorrow I'll dig out tcpdump again and see if I can understand what's going wrong, but some tips would be appreciated.