Logstash halted with error: Connection reset by peer

norup · March 16, 2020, 8:44am

My logstash stopped over the weekend for some reason. I currently only have 1 beat. winlogbeat, shipping its logs to it, but if it breaks every time some1 restarts their PC or something, then thats obviously going to be an issue. I now dont have logs from the last 2 days. It worked friday, and then it looks like it broke saturday the 14th
What could be the problem here?

**EDIT

Maybe this is actually an Elasticsearch issue. Im getting this alot:

Which i think means something is wrong with my resource amounts. The VM has 64GB memory so that should be plenty. The jvm.options has -Xms16g and -Xmx16g.
What else is relevant here? There is something about shards and indices im not really understanding

norup · March 17, 2020, 9:09am

I tried reading this https://www.elastic.co/blog/how-many-shards-should-i-have-in-my-elasticsearch-cluster, but i just dont really understand what im dealing with yet. I followed the "getting started" guide, and a couple of days later this happened. Not sure how many shards or indexes i have. There should not be a large amount of data. I have had 2 beats running for a couple of days on stale devices, so i cant imagine the space usage being the issue.

system · April 14, 2020, 9:09am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Troubleshooting resources? Elasticsearch elastic-stack-monitoring	7	764	April 15, 2021
Gc overhead, spent [] collecting in the last [], causing crashes Elasticsearch	22	19156	April 20, 2020
Filebeat to Logstash - "client is not connected" Beats filebeat	32	14450	February 26, 2018
Logstash 6.4.2 stopped processing after 45 days Logstash	2	328	January 26, 2019
Client write error, trying connect {:e=>#<IOError: Connection reset by peer Logstash	4	1477	February 8, 2021

Logstash halted with error: Connection reset by peer

Related topics