Unable to Send static log files to elasticsearch

Elastic Stack Logstash
1

Hi Everyone,

Am starting ELK project for first time.
I have installed logstash, elasticsearch, kibana. All in one single lab server.

I have couple of usecases to work on, So i got couple of files from app team. Basically extracted log file from the application. Now want to send these files/logs to elasticsearch and start creating dashboards for couple of usecases they requested for.

But when I configure, logstash with myapp.conf file with below configuration. after configuring this what are the steps to follow to send logs to elasticsearch.

Could you please help me with this issue.

input {
file {
        path => "/var/log/middletier/middletier9.log"
        type => "openam"
        start_position => beginning
                }
}

output {
    elasticsearch {
        hosts => ["localhost:9200"]
        index => "openam_logs-%{+YYYY.MM}"
        }
}
2

FYI we’ve renamed ELK to the Elastic Stack, otherwise Beats and APM feel left out! :wink:

If you have tried processing these files before then it's likely a sincedb issue on the file input.

3

ok, but this fresh installation and configuring logs for first time.

Could you help me to identify what's wrong in the input file?

Thanks!

4

Try running with debug and see what the output is.

5

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.