Logs from linux machine is unreadable

babeesh · July 29, 2016, 11:21am

I have logserver running on ubuntu 14.04. ELK versions are 2 or above(kibana 4.4.x).
I am also using nagios to monitor systems and applications. Now I need to sent error messages from nagios to logserver.
Nagios is installed on centos . Nagios error messages are writing into /usr/local/nagios/var/archives/ . I am planning to sent this error logs to logserver. (Using a shell script I keep only one log file in that folder . Errors will write into that log file)

For that, I installed filebeat on centos.

Logstash configuration :

input{
     tcp{
         port => 5550
         type => "nagios"
         codec => json {
          charset => "UTF-8"
            }
      }
}

output {
 if [type] == "nagios"  {
    elasticsearch {
        hosts => ["ipaddress:9200"]
        }
     }
 }

Now my problem is there is no readable information in logs getting in kibana .
Below is an example. I am getting only this type of logs.

How to get the actual error information in kibana. ??

magnusbaeck · July 29, 2016, 11:45am

So it's Filebeat that sends to port 5550? Use a beats input, not a tcp input.

babeesh · July 29, 2016, 11:52am

No logs are getting with beats input plugin

magnusbaeck · July 29, 2016, 12:01pm

But that's not what the configuration snippet you posted shows.

Topic		Replies	Views
Logs not getting to elasticsearch from logstash Logstash	10	545	March 5, 2019
Unable to send or receive log details Beats filebeat	17	1746	December 27, 2018
Filebeat, Logstash issue Beats filebeat	3	340	October 3, 2019
Logs not being sent to filebeats and logstash Beats filebeat	3	256	August 13, 2023
Filebeat and Logstash no send Logs Beats filebeat	7	1229	November 22, 2021

Logs from linux machine is unreadable

Related topics