[英]I don't understand how logstash-forwarder sent log to the elk server
I have installed Logstash-Forwarder on Client Server and when I'm checking my Kibana I haven't seen any log stored. 我已经在客户端服务器上安装了Logstash-Forwarder,并且在检查我的Kibana时没有看到任何存储的日志。 What I wanted to ask is how do you direct the log from client with logstash-forwarder to elk server?
我想问的是如何将日志从带有Logstash-Forwarder的客户端定向到Elk服务器?
Logstash forwarder uses lumberjack for log transport. Logstash转发器使用伐木工人进行日志传输。 The lumberjack protocol exists to provide a network protocol for transmission that is secure, low latency, low resource usage, and reliable.
存在伐木工人协议以提供用于传输的网络协议,该网络协议是安全的,低延迟,低资源使用率和可靠的。 Therefore it uses TCP and SSL/TLS certificates.
因此,它使用TCP和SSL / TLS证书。
I would recommend you this page to understand logstash forwarder. 我建议您在此页面上了解logstash转发器。 To put it in a nutshell, you need to build a correct SSL/TLS certificate infrastructure and specify a lumberjack input on your logstash server:
简而言之,您需要构建正确的SSL / TLS证书基础结构,并在logstash服务器上指定伐木工人输入:
Config example: 配置示例:
input {
lumberjack {
# The port to listen on
port => 12345
# The paths to your ssl cert and key
ssl_certificate => "path/to/ssl.crt"
ssl_key => "path/to/ssl.key"
# Set this to whatever you want.
type => "somelogs"
}
}
However, I would recommend you to try a few simpler inputs at first. 但是,我建议您首先尝试一些简单的输入。 Start with
stdin{}
and perhaps try syslog{}
to understand the procedure and see results in kibana. 从
stdin{}
开始,也许尝试syslog{}
来了解该过程并查看kibana中的结果。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.