How to sends logs from remote machine to Logstash or Elastic Search

pankaj0172 · July 3, 2020, 11:44am

Hi There,

I have installed Elasticsearch, Logstash, and Kibana (Elastic Stack) on Ubuntu 18.04 as suggested in the below article and everything configured correctly..

But I have installed metric beat on the remote windows server and configured the metricbeat .yaml files, started the service but while connecting to Logstah server from a remote windows machine within same network to sends system metric logs and but its not sending and giving error as an attached snapshot.

As listen Logstash & Elastic Search only listening localhost might be the caused this issue but tried to change it local to IP address but to able to change it. Can someone please guide me to get this done.

Basically I want to achieve this for each machine in my network..

Below is the metric.Yaml config file...
'''

================================= Dashboards =================================

These settings control loading the sample dashboards to the Kibana index. Loading

the dashboards is disabled by default and can be enabled either by setting the

options here or by using the `setup` command.

setup.dashboards.enabled: true

=================================== Kibana ===================================

Starting with Beats version 6.0.0, the dashboards are loaded via the Kibana API.

This requires a Kibana endpoint configuration.

setup.kibana:

Kibana Host

Scheme and port can be left out and will be set to the default (http and 5601)

In case you specify and additional path, the scheme is required: http://localhost:5601/path

IPv6 addresses should always be defined as: https://[2001:db8::1]:5601

host: "10.0.0.4:80"

---------------------------- Elasticsearch Output ----------------------------

output.elasticsearch:

Array of hosts to connect to.

#hosts: ["localhost:9200"]

Protocol - either `http` (default) or `https`.

#protocol: "https"

Authentication credentials - either API key or username/password.

#api_key: "id:api_key"
#username: "elastic"
#password: "changeme"

------------------------------ Logstash Output -------------------------------

#output.logstash:

The Logstash hosts

hosts: ["10.0.0.4:8443"]
''''

dadoonet · July 3, 2020, 3:47pm

You don't need Logstash. Just send to elasticsearch.

pankaj0172 · July 4, 2020, 2:22am

Thanks for your response, apericate it. But my elastic search only listening on localhost not Lan ip and due to thisetricbeat is not able to connect from remote machine.. Can you help me to fix it?

Er.Sid · July 4, 2020, 6:15pm

Hi Pankaj, I am also stuck at similar state. Did U find any solutin to Ur problem ?

pankaj0172 · July 6, 2020, 6:09am

Hi Sid,

I have figure it out this issue and able to resolve it by changing configuration in elastic config file, Please comment this setting with # then try to connect from remote machine it would be working fine.

Er.Sid · July 6, 2020, 7:23am

Thanks Pankaj..I will check it out

system · August 3, 2020, 9:23am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Metricbeat to Logstash on a remote server not working Beats metricbeat	3	1923	September 19, 2017
Metricbeat won't connect to Logstash over network Beats metricbeat	3	846	August 16, 2019
Filebeat doesn't send data to logstash (?) OR logstash isn't receiving it (?) Beats filebeat	7	6999	April 23, 2019
Logstash doesn't receive Metricbeat data Beats metricbeat	4	2457	June 8, 2017
Filebeat and Logstash no send Logs Beats filebeat	7	1229	November 22, 2021