Logstash not receiving messages

Aleksandar_Aleksandr · July 17, 2017, 9:54am

Hello,

I am trying to get the ELK up and running on docker. I have succesfully integrated the three services and they do in fact communicate with each other. My problem arises when I am trying to send messages to logstash over udp/tcp connection. I tried different input plugins including the udp, tcp and syslog plugins. In none of the cases or the tried configuration messages were actually being received. I checked and logstash is in fact listening to the requested ports. The application is also sending the packets to the right ip:port. However, no input is to be seen.

Does anybody have an idea what in the communication might possibly be going wrong?

Example.conf that I used:
input {
syslog {
port => "14544"
}
}

output {
elasticsearch {
hosts => ["elasticsearch:9200"]
}
stdout {
codec => rubydebug
}
}

docker-compose
logstash:
image: logstash:2.4.0
ports:
- "5044:5044"
- "14544:14544"
- "14544:14544/udp"
links:
- elasticsearch
depends_on:
- elasticsearch

magnusbaeck · July 18, 2017, 2:19pm

It's not clear to me if your "ports" map actually publishes the ports on the host; the documentation (https://docs.docker.com/compose/compose-file/#ports) isn't quite clear. Try using the long syntax described in the docs to really make sure the ports are published.

system · August 15, 2017, 2:20pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
LogStash Not Receiving Logs Logstash docker	1	463	December 30, 2020
Logstash not receiving Docker syslog input Logstash	3	2346	September 24, 2019
Logstash doesn't receive syslog Logstash	3	2859	July 13, 2017
Logstash not sending data to ELK Logstash docker	9	401	April 1, 2024
Logstash does not open a socket to elastic search Logstash	4	1391	September 28, 2017

Logstash not receiving messages

Related topics