Hi everyone,
I'm using the Elastic Stack with Elasticsearch, Logstash and Kibana in different servers. It's communicating well and I have acess to the Kibana web browser.
But, The server that is running the logs I want to read is different than this three, and I'm trying to send the logs with rsyslog.
The problem is: for each server should I send the logs? And how I configure it to show the logs in my kibana discover?
Thanks in advance.
Yes...you need to send the logs for all those servers for whom you want to visualize the logs on kibana. You need to install the filebeat agent on every server to send the logs over elasticsearch. You need to use the same version of ELK (Elasticsearch, Logstash and Kibana) and Filebeat.
You can follow the below link to install Filebeat:
https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-installation.html
Note:- The above link is for Filebeat 6.4.0. You need to refer for same version of ELK.
Thanks.
It worked, thank you!!
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.