堆栈内存溢出
  简体   繁体   English

Logstash无法将日志放入elasticsearch

[英]Logstash failed to put logs to elasticsearch

 原文  2016-01-28 07:38:46       elasticsearch/ logstash

问题描述

I'm trying to setup ELK environment to analysis my logs. 我正在尝试设置ELK环境来分析我的日志。
All of 3 tools are in one server, the ip is 192.168.1.114 3种工具全部位于一台服务器中,其IP为192.168.1.114
and here's my logstash config: 这是我的logstash配置: 

input {
  file {
    path => "/usr/local/websrv/tomcat/logs/catalina.out"
  }
}

output {
  elasticsearch {
    hosts => ["127.0.0.1:9200"]
  }
}

That works, however, when I changed hosts from ["127.0.0.1:9200"] to ["192.168.1.114:9200"] , errors happened. 可行,但是,当我将主机从[“ 127.0.0.1:9200”]更改为[“ 192.168.1.114:9200”]时 ,发生了错误。 I got below messages from logstash. 我从logstash得到以下消息。

Attempted to send a bulk request to Elasticsearch configured at '[" http://192.168.1.114:9200/ "]', but Elasticsearch appears to be unreachable or down! 尝试向配置为'[“ http://192.168.1.114:9200/ ”]'的Elasticsearch发送批量请求,但Elasticsearch似乎无法访问或关闭! {:client_config=>{:hosts=>[" http://192.168.1.114:9200/ "], :ssl=>nil, :transport_options=>{:socket_timeout=>0, :request_timeout=>0, :proxy=>nil, :ssl=>{}}, :transport_class=>Elasticsearch::Transport::Transport::HTTP::Manticore, :logger=>nil, :tracer=>nil, :reload_connections=>false, :retry_on_failure=>false, :reload_on_failure=>false, :randomize_hosts=>false}, :error_message=>"Connection refused", :class=>"Manticore::SocketException", :level=>:error} {:client_config => {:hosts => [“ http://192.168.1.114:9200/”],:ssl => nil,:transport_options => {:socket_timeout => 0,:request_timeout => 0,:proxy => nil,:ssl => {}},:transport_class => Elasticsearch :: Transport :: Transport :: HTTP :: Manticore,:logger => nil,:tracer => nil,:reload_connections => false,:retry_on_failure => false,:reload_on_failure => false,:randomize_hosts => false} 、: error_message =>“拒绝连接”,:class =>“ Manticore :: SocketException”,:level =>:error}

Could some one advise? 有人可以建议吗? Thanks a lot. 非常感谢。

1 个解决方案

解决方案1
 4 已采纳  2016-01-28 07:43:05

If you're using ES 2.0, this is because ES binds to localhost by default . 如果您使用的是ES 2.0,这是因为默认情况下 ES 绑定到localhost

In order to change that, you simply need to change the following settings in your elasticsearch.yml configuration file and restart ES: 为了更改此设置,您只需要在elasticsearch.yml配置文件中更改以下设置并重新启动ES: 

network.bind_host: 192.168.1.114

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 logstash不将日志推送到AWS Elasticsearch - logstash not pushing logs to AWS Elasticsearch 通过 Logstash - Grok - ElasticSearch 标记日志 - Tagging the Logs by Logstash - Grok - ElasticSearch 将logstash日志直接发送到elasticsearch - Sending logstash logs directly to elasticsearch 读取 Logstash 日志但不会推送到 elasticsearch - Logstash logs are read but are not pushed to elasticsearch logstash-过滤日志并发送到不同的Elasticsearch集群 - logstash - filter logs and send to different elasticsearch cluster 在Kubernetes上安装Logstash并将日志发送到AWS ElasticSearch - Installing Logstash on Kubernetes and Sending logs to AWS ElasticSearch 在Windows中使用Logstash将Apache日志导入Elasticsearch - Import apache logs into elasticsearch using logstash in windows 将日志发送到elasticsearch时logstash输出错误 - logstash output error in sending logs to elasticsearch 从logstash发送日志到elasticsearch不匹配 - Send logs from logstash to elasticsearch mismatch 禁用日志“logstash.outputs.elasticsearch” - Disable logs "logstash.outputs.elasticsearch"
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM