Im using logstash 1.4.2 and ...
I have the next logstash.conf
input {
udp {
port => 9991
codec => netflow {
definitions => "/home/profucom/logstash-1.4.2/lib/logstash/codecs/netflow/netflow.yaml"
versions => [5]
}
}
}
}
When i run "./logstash -f logstash.conf works fine, i get all information from my 2 routers, but im not sure if index => logstash-%{+YYYY.MM.dd} write the log.
the log would be stored in curl 'localhost:9200/_cat/indices?v ', or not?
Thanks before all <-<
Notes: I run
1- ./elasticsearch -d
2- ./logstash -f logstash.conf
3.- i put a template for logstash-*
4.- and of curse this code to get information from my routers
Thanks for help!!! but... With
curl 'localhost:9200/_cat/indices?v'
i got this
health index pri rep docs.count docs.deleted store.size pri.store.size
yellow kibana-int 5 1
but i want to put here my index from my routers,
because kibana dont show me nothing.
and I thought that elasticsearch { index => "logstash-%{+YYYY.MM.dd}" host => "localhost" } sent the log from my routers to elasticsearch for could read de log on kibana.
Do you mean about router information? (in my case)
Of curse , i can see traffic of my both routers.
But Honestly, im not sure if this part of code
output {
stdout { codec => rubydebug }
elasticsearch { index => logstash-%{+YYYY.MM.dd}
host => "localhost"
}
}
let elasticsearch get logs from my router and Kibana can read.
Yeah man, In the console i can see the out put
but
how i can save the output in logs, for show it in kibana.
I tried with "index => logstash-%{+YYYY.MM.dd} but does not works.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
