Kibana not fetching results

AadarshKumayan · June 2, 2017, 7:07am

hi i have installed elk server on my instance
i am receiving logs from other machine

curl -XGET 'http://localhost:9200/filebeat-*/_search?pretty'

output is

{
  "_index" : "filebeat-2017.05.26",
  "_type" : "syslog",
  "_id" : "AVxnkZavXMBSzU68KEBV",
  "_score" : 1.0,
  "_source" : {
    "message" : "May 26 17:40:36 Hadoop-client1 sshd[957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.37.37",
    "@version" : "1",
    "@timestamp" : "2017-05-26T12:10:36.000Z",
    "input_type" : "log",
    "fields" : null,
    "beat" : {
      "hostname" : "Hadoop-client1.Storage.nxtstore.co.in",
      "name" : "Hadoop-client1.Storage.nxtstore.co.in"
    },
    "source" : "/var/log/auth.log.1",

but kibana is not fetching any results

Marius_Dragomir · June 2, 2017, 11:52am

Sorry, what results do you want Kibana to fetch? It doesn't have any CLI features, you just need to look for them in the web interface.

AadarshKumayan · June 2, 2017, 12:07pm

it is not displaying anything

Marius_Dragomir · June 2, 2017, 12:10pm

Have you tried increasing the time range from the top right? maybe you have no events in the past 15 minutes.

AadarshKumayan · June 2, 2017, 12:12pm

it worked there was problem in filebeat-template.json file thanks

system · June 30, 2017, 12:12pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.