Unable to process the log files to logstash and to kibana

aknraj · March 24, 2017, 1:59pm

Hi All -

I am brand new to the Elasticsearch products and just trying to learn and getting my hands into it. I need your help / suggestions to overcome with the issues. Can you please guide me here pls?

Here is where I am - I managed to setup pipeline successfully, and able to load sample logs to logstash and to kibana. However, when I try to load the user logs from my custom application, the log is not consumed despite of the logstash running. Can you please help what could be the cause and next steps to consider?

Checks done from my side:

verified configurations in logstash.yml
verified configurations in filebeat.yml
pipleline conf. looks good
grok filter - i feel its ok but not sure. I am just trying to filter with "Started" keyword from the log

filter {
grok {
match => { "message" => "%{Started}"}
}
geoip {
source => "clientip"
}

Please refer to the sample log attached for the reference

Thanks in Advance for your help !

Regards
Raj

ruflin · March 25, 2017, 9:03pm

Can you share your filebeat config and filebeat logs? Which versions of the tools are you using?

system · April 22, 2017, 9:03pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Log Filtration Issue with Filebeat and Logstash Configuration Logstash	19	508	September 13, 2023
Grok... is it just me or is it really that difficult? Beats filebeat	1	329	April 8, 2021
Logstash filter not working Logstash	3	581	January 23, 2023
Filebeat not passing logs through logstash Beats	1	328	October 8, 2018
Filebeat, Kibana and ElasticSearch are configured, but not reading log files Beats filebeat	6	1491	August 14, 2020

Unable to process the log files to logstash and to kibana

Related topics