Hello, I'm currently working on a central logging solution which seems to be working great. Rsyslog forwarding logs to the central logging server which has been upgrade to version 7.2.7 and elasticsearch storing the logs. Searching elasticsearch I can see that logs are being sent/stored. However I would like to get the frontend working which is kibana 3. I'm wondering if anyone has been able to get kibana 3 working with rsyslog or could point me in the direction of what I would need to change on kibnana side to have the logs visible. Logstash setting are the default for kibana so it works out of the box. I have looked at the defaults for kibana and the only difference I can see that needs to be updated is the timestamps defaults index:
"index": "[logstash-]YYYY.MM.DD" I have changed that to "system" which is what shows up in elasticsearch when logs are forward from rsyslog to be stored. However no logs are being displayed in kibnana. If someone has any idea what I'm missing would be hopeful. Thank You, Jason _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
