Logstash not parsing logstash-tutorial.log

w0lfxpunk · May 19, 2018, 7:10am

Hello All,
I have installed logstash and filebeat as per the tutorial on my centos 7 machine. I have followed the example at https://www.elastic.co/guide/en/logstash/6.2/advanced-pipeline.html
However when I run it as per the tutorial its not parsing the sample data.
Below are the configuration details
FIlebeat

Paths that should be crawled and fetched. Glob based paths.

paths:
- /var/log/logstash-tutorial.log

#output.elasticsearch:

Array of hosts to connect to.

#hosts: ["localhost:9200"]

output.logstash:

The Logstash hosts

hosts: ["localhost:5044"]

Logstash - first-pipeline.conf

input {
beats {
port => "5044"
}
}
filter {
grok {
match => { "message" => "%{COMBINEDAPACHELOG}"}
}
}
output {
stdout { codec => rubydebug }
}

Filebeat - /data/registery is empty

As per the tutorial I am starting filebeat
sudo ./filebeat -e -c filebeat.yml -d "publish"

&
Logstash -
sudo logstash -f first-pipeline.conf --config.reload.automatic

There is nothing in the logs.

warkolm · May 20, 2018, 9:09am

Is Logstash not showing anything in stdout?

w0lfxpunk · May 22, 2018, 8:30am

nope and I just left it there and configured it for apache logs and it worked fine. Do not know what was wrong with the one I reported.

system · June 19, 2018, 8:39am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Trying to follow Logstash tutorial Logstash	2	263	September 5, 2019
Filebeat to Logstash to ES Logstash	16	1101	October 6, 2020
Logstash not showing any data when input is configured with filebeat Beats filebeat	4	457	September 6, 2018
Grok not parsing Logstash	2	170	October 16, 2023
LogStash not showing output on console Logstash	2	489	October 8, 2020

Logstash not parsing logstash-tutorial.log

Paths that should be crawled and fetched. Glob based paths.

Array of hosts to connect to.

The Logstash hosts

Related Topics