Sending Logs to Slack

cotcadaver · February 4, 2016, 7:59pm

Hey guys,
I am having trouble understanding why my instance of logstash isn't sending the files to slack. I was hoping a pair of fresh eyes may be able to find my mistakes. I am simply using an Ubuntu server and am wanting to send some of the server's own logs as a test.

input{
  file{
     path => "/var/log/apt/history.log"
  }
}

filter{
  grok{
     match => {"message" =>"%{GREEDYDATA:message}"}
  }
}

output {
  slack {
     url => "MY_SLACK_WEBHOOK"
     channel => "#logs-syslog"
  }
}

magnusbaeck · February 4, 2016, 8:01pm

Are new lines being appended to the end of history.log, which Logstash is tailing?

cotcadaver · February 4, 2016, 8:18pm

That is my understanding of how the logs are set up.

magnusbaeck · February 4, 2016, 8:38pm

If you replace the slack output with stdout { codec => rubydebug }, you get output?

Topic		Replies	Views
Logstash output plugin for slack Logstash	2	895	August 21, 2020
Stdout rubydebug not outputting to file Logstash	12	821	November 6, 2020
Output Sample for HTTP Logstash	3	298	June 12, 2018
Message format in logstash output plugin Logstash	3	2503	July 6, 2017
Logstash syslog issue Logstash	9	1098	April 23, 2018

Sending Logs to Slack

Related topics