Logstash_Dns timeout issue

Raj_Kumar · October 17, 2017, 9:46am

Hi All,

Is there any way to fix this issue every once in 15 days am getting this message

[2017-10-17T11:36:35,433][ERROR][logstash.filters.dns ] DNS: timeout on resolving address. {:field=>"hostnameDst", :value=>"172...}
[2017-10-17T11:36:48,029][ERROR][logstash.filters.dns ] DNS: timeout on resolving address. {:field=>"hostnameSrc", :value=>"172..."}
[2017-10-17T11:37:07,005][ERROR][logstash.filters.dns ] DNS: timeout on resolving address. {:field=>"hostnameSrc", :value=>"172..."}
[2017-10-17T11:37:29,236][ERROR][logstash.filters.dns ] DNS: timeout on resolving address. {:field=>"hostnameDst", :value=>"172..."}

My logstash conf looks like this (logstash 5.4)

filter {
 if [src_ip] {
 mutate {
 add_field => { "hostnameSrc" => "%{src_ip}" }
  }
 }
 if [dst_ip] {
 mutate {
 add_field => { "hostnameDst" => "%{dst_ip}" }
 }
}
 dns {
 action => "replace"
 reverse => [ "hostnameSrc" ]
 hit_cache_size => "10000"
 hit_cache_ttl => "10000"
 failed_cache_size => "10000"
 failed_cache_ttl => "10"
 periodic_flush => "true"
 }
 dns {
 action => "replace"
 reverse => [ "hostnameDst" ]
 hit_cache_size => "10000"
 hit_cache_ttl => "10000"
 failed_cache_size => "10000"
 failed_cache_ttl => "10"
 periodic_flush => "true"
 }
}

Thanks in Advance,
Raj

system · November 14, 2017, 9:46am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Dns timeout error Logstash	2	974	May 9, 2017
DNS request timed out - logstash filter Logstash	3	831	April 6, 2018
DNS Plugin Logs Logstash	1	416	March 7, 2017
DNS Filter Lookup Failures since 6.7 upgrade Logstash	14	1325	May 30, 2019
Logstash.pipeline error in dns plugin crashes logstash Logstash	7	825	June 15, 2018

Logstash_Dns timeout issue

Related topics