Logstash output to elasticsearch event missing

bns_frankpoon · September 20, 2017, 6:37am

Hi,

I'm trying the elk stack for analyze and visualize data. I tried to configure logstash for standard output and elastisearch. If I only output to screen, it shows 5 records, perfect. If I set the output to elasticsearch, the outcome sometimes is 3, 4, which is not the exactly the same as what I input. I tried to search in google / forum, but didn't find any solution.

Sample config and data show as below:

sample.json
{"ID":"ABCDEFA"}
{"ID":"ABCDEFB"}
{"ID":"ABCDEFC"}
{"ID":"ABCDEFD"}
{"ID":"ABCDEFE"}

sample.config:

input {

file {
codec =>"json"
path => ["/data/sample/user/sample.json"]
start_position => "beginning"
sincedb_path => "/dev/null"
}
}

output {
elasticsearch {
hosts => ["localhost:9200"]
index => "ycp-dashboard-sample-user"
}
stdout { codec => rubydebug }
}

system · October 18, 2017, 6:37am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash missing event when output set to elasticsearch Logstash	1	768	October 18, 2017
When outputting from logstash to elasticsearch, some data is missing Logstash	3	861	July 21, 2022
Logstash output to Elastic search is not working Elasticsearch	4	759	July 6, 2017
Logstash does not output to ES Logstash	4	626	January 15, 2020
Logger.logstash.outputs.elasticsearch not printing enough logs Logstash	13	1395	September 9, 2020

Logstash output to elasticsearch event missing

Related topics