How to run multiple conf file continusly in backend

mamta · May 24, 2018, 6:41am

Hey,

I have installed ELK 5.6.8 version on Linux machine in a production environment. I have multiple conf files for each log.Currently I am running conf file from bin# ./logstash -f . I also tried to run from /etc/logstash/conf.d directory. I was tried to run conf file continuously by using nohup and crontab but at a time only one conf file is running continuously on the backend.
Can you please help me to run conf file continuously on the backend.

Thank you.

warkolm · May 24, 2018, 7:01am

How did you install Logstash?

mamta · May 24, 2018, 7:12am

Through rpm packages

warkolm · May 24, 2018, 7:12am

Then why not use service/systemctl?

mamta · May 24, 2018, 7:14am

I have used systemctl restart logstash , systemctl enable logstash, commands.
But my question is how I can run logstash.conf file continuously in back-end.

warkolm · May 24, 2018, 7:16am

That's how you do it, if you put files in /etc/logstash/conf.d/ then the process will start and run them continuously.

If that is not happening, then perhaps you need to share a bit more info.

mamta · May 24, 2018, 7:24am

Hey,
In /etc/logstash/conf.d directory I have kept only one conf file and I start logstash by using systemctl restart logstash but the file was not running at-least for once. Will it possible to run multiple conf file from this location?
I have uploaded Apache error log conf file.

Thank you.

warkolm · May 24, 2018, 7:29am

Please don't post pictures of text, they are difficult to read and some people may not be even able to see them

mamta · May 24, 2018, 7:58am

Ok. Then how I can give you more info?

warkolm · May 24, 2018, 8:44pm

Copy and paste the text.

mamta · May 25, 2018, 6:03am

Hey,
In /etc/logstash/conf.d directory I have kept only one conf file and I start logstash by using systemctl restart logstash but the file was not running at-least for once. Will it possible to run multiple conf files from this location? I have uploaded my apache error log conf file.
Please look into it @warkolm .

input {
file {
path => "/var/log/httpd/error_log"
start_position => "beginning"
type => "logs"
}
}

filter {
grok { match => [ "message", "(?[%{DAY} %{MONTH} %{MONTHDAY} %{TIME} %{YEAR}]) [%{GREEDYDATA:loglevel}] [%{GREEDYDATA:pid}] %{GREEDYDATA:errormsg} %{GREEDYDATA:path}" ] }
}

output {
elasticsearch {
hosts => [ "localhost:9200" ]
index => "apache_errorlog"
}
}

system · June 22, 2018, 6:03am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Running logstash in the background in production environment Logstash	6	10683	September 4, 2017
Logstash .conf file run forever as a service? Logstash	6	1295	February 1, 2019
How to run multiple logstash conf file in single machine using logstash 6.2.4 Logstash	4	2696	September 19, 2018
How to run multiple conf Logstash	2	327	October 8, 2018
How to start logstash 6.2.4 multiple instance Logstash	7	4382	August 22, 2018

How to run multiple conf file continusly in backend

Related topics