I have just installed elasticsearch, kibana and logstash. This is my first installation so please be kind.
ES, Kibana, Logstash and metricbeat are all v5.4.2
OS Centos 6.9
metricbeat installed from RPM
ES,Kibana, Logstash installed from tar.gz
I can login to Kibana and I have ran a couple of the tutorials for Bank, logstash etc and I can see information there.
Last night I installed metricbeat but it is unable to connect to elasticsearch. I get the following error spewed out in the metricbeat logfile
{code}
2017-06-26T18:38:14+01:00 ERR Connecting error publishing events (retrying): Get https://localhost:9200: dial tcp 127.0.0.1:9200: getsockopt: connection refused
2017-06-26T18:38:40+01:00 INFO No non-zero metrics in the last 30s
{code}
###################### Metricbeat Configuration Example #######################
# This file is an example configuration file highlighting only the most common
# options. The metricbeat.full.yml file from the same directory contains all the
# supported options with more comments. You can use it as a reference.
#
# You can find the full configuration reference here:
# https://www.elastic.co/guide/en/beats/metricbeat/index.html
#========================== Modules configuration ============================
metricbeat.modules:
#------------------------------- System Module -------------------------------
- module: system
metricsets:
# CPU stats
- cpu
# System Load stats
- load
# Per CPU core stats
- core
# IO stats
- diskio
# Per filesystem stats
- filesystem
# File system summary stats
- fsstat
# Memory stats
- memory
# Network stats
- network
# Per process stats
- process
# Sockets (linux only)
- socket
enabled: true
period: 10s
processes: ['.*']
#================================ General =====================================
# The name of the shipper that publishes the network data. It can be used to group
# all the transactions sent by a single shipper in the web interface.
#name:BRAVO
# The tags of the shipper are included in their own field with each
# transaction published.
#tags: ["service-X", "web-tier"]
# Optional fields that you can specify to add additional information to the
# output.
#fields:
# env: staging
#================================ Outputs =====================================
# Configure what outputs to use when sending the data collected by the beat.
# Multiple outputs may be used.
#-------------------------- Elasticsearch output ------------------------------
output.elasticsearch:
# Array of hosts to connect to.
hosts: ["localhost:9200"]
# Optional protocol and basic auth credentials.
protocol: "https"
username: "user"
password: "blablabla"
#----------------------------- Logstash output --------------------------------
#output.logstash:
# The Logstash hosts
#hosts: ["localhost:5044"]
# Optional SSL. By default is off.
# List of root certificates for HTTPS server verifications
#ssl.certificate_authorities: ["/etc/pki/root/ca.pem"]
# Certificate for SSL client authentication
#ssl.certificate: "/etc/pki/client/cert.pem"
# Client Certificate Key
#ssl.key: "/etc/pki/client/cert.key"
#================================ Logging =====================================
# Sets log level. The default log level is info.
# Available log levels are: critical, error, warning, info, debug
#logging.level: debug
# At debug level, you can selectively enable logging only for some components.
# To enable all selectors use ["*"]. Examples of other selectors are "beat",
# "publish", "service".
#logging.selectors: ["*"]
I am literally 2 days into ES, Logstash and Kibana. I have installed x-pac but have no Idea of how i get it working for me.
I have an nginx reverse proxy going connecting to kibana so i can access elastic search. nginix has my ssl config. I dont think I have set up TLS in elasticsearch.yml but im off to check.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.