Hi all.
I'm trying to test Logstash TCP input plugin with SSL configuration so I run two logstash instance, one for TCP output and one for TCP input.
These are my settings:
input.conf :
input {
tcp {
port => 9443
mode => "server"
ssl_enable => true
ssl_cert => "/home/sf/thangld13/244cert/server.crt"
ssl_extra_chain_certs => "/home/sf/thangld13/244cert/ca.crt"
ssl_key => "/home/sf/thangld13/244cert/server.key"
ssl_verify => true
}
}
filter {
if (1 == 2) {
}
}
output {
stdout {
codec => rubydebug
}
}
output.conf
input {
file {
path => "/var/log/auth.log"
start_position => "beginning"
}
}
filter {
if (1 == 2) {
}
}
output {
tcp {
port => 9443
host => "localhost"
ssl_enable => true
ssl_cacert => "/home/sf/thangld13/244cert/ca.crt"
ssl_key => "/home/sf/thangld13/244cert/client.key"
ssl_cert => "/home/sf/thangld13/244cert/client.crt"
ssl_verify => false
}
}
Then I run
/usr/share/logstash/bin/logstash -f input.conf
/usr/share/logstash/bin/logstash -f output.conf --path.data /home/sf/thangld13/logstash/data/
And the first instance gives me this error:
java.lang.OutOfMemoryError: Java heap space
Dumping heap to java_pid21649.hprof ...
Heap dump file created [1075541011 bytes in 6.984 secs]
The signal INT is in use by the JVM and will not work correctly on this platform
[ERROR] 2019-05-08 16:46:39.263 [pool-2-thread-10] deadletterqueue - PeriodicPoller: exception {:poller=>#<LogStash::Instrument::PeriodicPoller::DeadLetterQueue:0x207797a6 @agent=#<LogStash::Agent:0x26f4fd33 @dispatcher=#<LogStash::EventDispatcher:0x1373afcc @emitter=#<LogStash::Agent:0x26f4fd33 ...>, @listeners=<Java::JavaUtilConcurrent::CopyOnWriteArraySet:0 []>>, @id_path="/usr/share/logstash/data/uuid", @metric=#...:polling_timeout=>120, :polling_interval=>5, :executed_at=>2019-05-08 16:46:39 +0700}
Error: Your application used more memory than the safety cap of 1G.
Specify -J-Xmx####m to increase it (#### = cap size in MB).
Specify -w for full OutOfMemoryError stack trace
Then It shuts down.
Can anyone tell me what is wrong here?
Thanks!