stackoom
  简体   繁体   中英

Elasticsearch Filebeat

 原文  2017-12-03 14:44:38       elasticsearch

Question

Im new to Elasstic Search and im trying to integrate ES in our infrastructure. I installed one central ES server (6.0) with Elasticsearch, Kibana ....

The first task I wanted to do is sending apache logfiles from other servers into this ES server.

From the description of filebeat it seems this module is doing exactly the things i want (lightweight shipping of logfiles to ES server):

https://www.elastic.co/downloads/beats/filebeat

I installed filebeat from the RPM to our Server. But it seems not to run because of missing Plugins (geoIP, UA). I tried to install these but there is no executable "elasticsearch-plugin" available.

Do i have to install the whole ES package on every server I want to send logfiles to our ES Server?

Or is there another way to send logfiles to the ES Server and process fields like IP and UA on the Server side?

1 answers

solution1
 0 ACCPTED  2017-12-04 05:32:31

It's not the only approach, but this is generally the best way to get started.

You're nearly there: The elasticsearch-plugin is located in /usr/share/elasticsearch/bin/ . You will need to install the GeoIP and UA plugins on every Elasticsearch node. Once that's done you should be able to use the Apache module in Filebeat.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question filebeat to logstash or elasticsearch Ingest node Filebeat to Elasticsearch Filebeat from elasticsearch will not filter Filebeat not pushing logs to Elasticsearch Filebeat and AWS Elasticsearch - Not Working Plugin not Working with FileBeat in ElasticSearch Filebeat is not creating index in Elasticsearch Elasticsearch Filebeat to GCP PubSub Dynamic index in elasticsearch with filebeat filebeat failed to connect to elasticsearch
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM