My logstash.service, elasticsearch.service, kibana.service are up and running perfectly in my machine. Logstash was able to receive logs on 514 port. The problem is my index appears in kibana but when I am unable to find any logs in kibana when clicked on discover tab. How can I correct this error?
Is data getting indexed into Elasticsearch? Place the following URL in your browser http://localhost:9200/_cat/indices. https://www.elastic.co/guide/en/elasticsearch/reference/current/cat-indices.html
health status index uuid pri rep docs.count docs.deleted store.size pri.store.size
yellow open twitter u8FNjxh8Rfy_awN11oDKYQ 1 1 1200 0 88.1kb 88.1kb
green open twitter2 nYFWZEO7TUiOjLQXBaYJpA 1 0 0 0 260b 260b
Do you see the index your logstash instance is creating in our output? Is it getting populated iwht documents?
If so, then you have to create a Kibana index pattern. Can you post a screen shot of your infra* index pattern? Go to management -> index patterns and then click on the infra* index pattern.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.