Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [logstash]

logstash is a tool for collecting and distributing log events.

logstash is a free and open source tool (apache 2.0 license) for managing events and logs. It can be used to collect and parse logs, and distribution to other indexing systems. It has a web interface for searching and drilling into the logs.

260 questions
-1
votes
1 answer

logstash multiline logging with docker gelf driver

I'm trying to force logstash to not split my mulitiline logs, i'm testing it with such simple config: input { gelf { port => 5055 } filter { multiline { pattern => "^\s" what => previous } } output { stdout { } } But im…
user3069488
  • 169
  • 2
  • 4
  • 19
-1
votes
1 answer

Unable to run logstash config file (permission denied)

my config file is stored in /etc/logstash/ and I ran the command $ /etc/logstash -f /etc/logstash/logstash.conf as root. However, they told me that permission denied when I tried to do that. Is there any way to solve this?
John Smith
  • 1
-1
votes
1 answer

install zeromq for logstash in Solaris 5.10

used this: http://zeromq.org/distro:debian to get zeromq in Ubuntu to use it with logstash. Want to achieve same within Solaris. Read that zeromq supports Solaris but only provides a tarball. How to apt-get for Zeromq in Solaris.
change
  • 107
-1
votes
1 answer

Alerting on threshold crossing?

We are using logstash + elasticsearch + Kibana to parse, store and view our logs respectively. Now, we want a notification/alert when a threshold for a particular log or threshold for a particular field (after parsing) is crossed. Eg: On a server…
Siddharth Trikha
  • 149
  • 1
  • 5
-1
votes
1 answer

lumberjack shipper init script

I'm using lumberjack shipper for logstash. I'm in need of init.d script to start lumberjack on centos system. I have the script for debian based systems but can't get one on Centos to work. I have this script right now: #!/bin/sh # # …
Pracovek
  • 11
  • 1
1 2 3
17
18