On Wednesday, November 12, 2014 at 16:14 CET,
Andrew Stacey <[email protected]> wrote:
> This is probably a very noobish question. I just starting playing
> with an ELK stack I have set up on Centos 7. All the core services
> seem to be working but I can't seem to get it to receive syslog
> messages. I have both selinux and the firewall turned off (just a
> local lab right now). Netstat -nlp does not show anything listening
> on port 514.
>
> According to the logstash book, I need to add the following syslog
> input plugin
>
> syslog {
> type => syslog
> port => 5514
> }
This question would've been a better fit for the Logstash mailing list.
https://groups.google.com/forum/#!forum/logstash-users
[...]
> ERROR couldn't connect to tcp socket on 10.1.10.154:514; No connection
> could be made because the target machine actively refused it.
nxlog tries to send to port 514 but you've configured Logstash to listen
on port 5514. Either one needs to be adjusted to match the other. Keep
in mind that only root can listen on port 514 (but see below) and
Logstash is typically not run as root.
http://unix.stackexchange.com/questions/10735/linux-allowing-an-user-to-listen-to-a-port-below-1024
[...]
--
Magnus Bäck | Software Engineer, Development Tools
[email protected] | Sony Mobile Communications
--
You received this message because you are subscribed to the Google Groups
"elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/elasticsearch/20141112155404.GA25446%40seldlx20533.corpusers.net.
For more options, visit https://groups.google.com/d/optout.
