Hi,
I have a server where I have installed logstash. I am trying to forward a log windows using winlogbeat to a remote Elasticsearch server.
i specified the elasticserver's host address and ports in the output configurations.But I cannot see anything on kibana.
What config do I need to do to achieve this?
Many thanks!!!
What does your Logstash configuration look like? Have you looked in your Winlogbeat log file to see if it has problems sending to Logstash? Have you looked in your Logstash log file to see if it has problems sending to Elasticsearch?
Thanks for your reply!!
my logstash.conf is:
input {
beats {
port => 5044
}
}
output {
elasticsearch {
hosts => ["@elasticserever:9200"]
index => "win-log-%{+YYYY.MM.dd}"
}
}
I make sure that elasticsearch received logs from logstash.But i cannot see any log on kibana.
hosts => ["@elasticserever:9200"]
There an at-sign in your hostname?
I make sure that elasticsearch received logs from logstash.
How?
But i cannot see any log on kibana.
Have you tried using Elasticsearch's REST API to verify what, if anything, has ended up there?
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.