Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\Wahab>cd C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\bin\nss
m-2.24\win64
C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\bin\nssm-2.24\win64>nssm.
exe install Logstash
Service "Logstash" installed successfully!
C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\bin\nssm-2.24\win64>cd C:
\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\bin
C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\bin>logstash.bat -f ..\co
nf
Sending Logstash logs to C:/Program Files/Elastic/logstash-6.4.0/logstash-6.4.0/
logs which is now configured via log4j2.properties
[2018-08-28T07:55:03,743][WARN ][logstash.config.source.multilocal] Ignoring the
'pipelines.yml' file because modules or command line options are specified
[2018-08-28T07:55:04,820][INFO ][logstash.runner ] Starting Logstash {"
logstash.version"=>"6.4.0"}
[2018-08-28T07:55:04,934][INFO ][logstash.config.source.local.configpathloader]
No config files found in path {:path=>"C:/Program Files/Elastic/logstash-6.4.0/l
ogstash-6.4.0/conf"}
[2018-08-28T07:55:04,948][ERROR][logstash.config.sourceloader] No configuration
found in the configured sources.
[2018-08-28T07:55:05,908][INFO ][logstash.agent ] Successfully started
Logstash API endpoint {:port=>9600}
C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\bin>cd C:\Program Files\E
lastic\logstash-6.4.0\logstash-6.4.0\config
C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\config>logstash -f iis_w3
c_logs.conf
'logstash' is not recognized as an internal or external command,
operable program or batch file.
C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\config>cd C:\Program File
s\Elastic\logstash-6.4.0\logstash-6.4.0\bin
C:\Program Files\Elastic\logstash-6.4.0\logstash-6.4.0\bin>logstash -f iis_w3c_l
ogs.conf
Sending Logstash logs to C:/Program Files/Elastic/logstash-6.4.0/logstash-6.4.0/
logs which is now configured via log4j2.properties
[2018-08-28T09:40:54,282][WARN ][logstash.config.source.multilocal] Ignoring the
'pipelines.yml' file because modules or command line options are specified
[2018-08-28T09:40:54,965][INFO ][logstash.runner ] Starting Logstash {"
logstash.version"=>"6.4.0"}
[2018-08-28T09:40:55,543][ERROR][logstash.agent ] Failed to execute ac
tion {:action=>LogStash::PipelineAction::Create/pipeline_id:main, :exception=>"L
ogStash::ConfigurationError", :message=>"Expected one of #, => at line 9, column
6 (byte 149) after input {\n file {\n type => "iis_log_1"\n path => [
"C:/inetpub/logs/LogFiles/W3SVC1/*.log"]\n start_position => "beginning"\n
}\n\nfilter {\n if ", :backtrace=>["C:/Program Files/Elastic/logstash-6.4.0/l
ogstash-6.4.0/logstash-core/lib/logstash/compiler.rb:41:in compile_imperative'" , "C:/Program Files/Elastic/logstash-6.4.0/logstash-6.4.0/logstash-core/lib/logs tash/compiler.rb:49:incompile_graph'", "C:/Program Files/Elastic/logstash-6.4.
0/logstash-6.4.0/logstash-core/lib/logstash/compiler.rb:11:in block in compile_ sources'", "org/jruby/RubyArray.java:2486:inmap'", "C:/Program Files/Elastic/l
ogstash-6.4.0/logstash-6.4.0/logstash-core/lib/logstash/compiler.rb:10:in compi le_sources'", "org/logstash/execution/AbstractPipelineExt.java:157:ininitializ
e'", "C:/Program Files/Elastic/logstash-6.4.0/logstash-6.4.0/logstash-core/lib/l
ogstash/pipeline.rb:22:in initialize'", "C:/Program Files/Elastic/logstash-6.4. 0/logstash-6.4.0/logstash-core/lib/logstash/pipeline.rb:90:ininitialize'", "C:
/Program Files/Elastic/logstash-6.4.0/logstash-6.4.0/logstash-core/lib/logstash/
pipeline_action/create.rb:38:in execute'", "C:/Program Files/Elastic/logstash-6 .4.0/logstash-6.4.0/logstash-core/lib/logstash/agent.rb:309:inblock in converg
e_state'"]}
[2018-08-28T09:40:55,964][INFO ][logstash.agent ] Successfully started
Logstash API endpoint {:port=>9600}