I have three files in this directory,
Elasticsearch.log
elasticsearch_index_indexing_slowlog.log (which is empty)
elasticsearch_index_search_slowlog.log (this one is also empty)
the elasticsearch.log has this...
[2014-04-29 14:20:12,396][INFO ][node ] [Black Fox]
version[1.1.1], pid[3081], build[f1585f0/2014-04-16T14:27:12Z]
[2014-04-29 14:20:12,396][INFO ][node ] [Black Fox]
initializing ...
[2014-04-29 14:20:12,403][INFO ][plugins ] [Black Fox] loaded
[], sites []
[2014-04-29 14:20:15,739][INFO ][node ] [Black Fox]
initialized
[2014-04-29 14:20:15,739][INFO ][node ] [Black Fox]
starting ...
[2014-04-29 14:20:15,827][INFO ][transport ] [Black Fox]
bound_address {inet[/0:0:0:0:0:0:0:0:9300]}, publish_address
{inet[/192.168.1.88:9300]}
[2014-04-29 14:20:18,876][INFO ][cluster.service ] [Black Fox]
new_master [Black Fox][8OguoYzsQ1GAmKtV3WtFeQ][inet[/192.168.1.88:9300]],
reason: zen-disco-join (elected_as_master)
[2014-04-29 14:20:18,963][INFO ][discovery ] [Black Fox]
elasticsearch/8OguoYzsQ1GAmKtV3WtFeQ
[2014-04-29 14:20:19,000][INFO ][http ] [Black Fox]
bound_address {inet[/0:0:0:0:0:0:0:0:9200]}, publish_address
{inet[/192.168.1.88:9200]}
[2014-04-29 14:20:19,024][INFO ][gateway ] [Black Fox]
recovered [0] indices into cluster_state
[2014-04-29 14:20:19,024][INFO ][node ] [Black Fox] started
-----Original Message-----
From: [email protected]
[mailto:[email protected]] On Behalf Of Orangepeel Beef
Sent: Tuesday, April 29, 2014 4:02 PM
To: rsyslog-users
Subject: Re: [rsyslog] Rsyslog w/ logstash-elasticsearch-kibana server
what does your /var/log/elasticsearch/cluster_name.log have to say for itself?
On Tue, Apr 29, 2014 at 3:26 PM, Josh Bitto <[email protected]> wrote:
> Ok so after everyone's input I decided to go with
> Rsyslog->Elasticsearch->Kibana setup.
>
> So I'm running CentOS 6.5 with apache. On a virtualbox machine.
> Rsyslog version rsyslog-7.6.3-1.el6.x86_64 Kibana and elasticsearch
> are the latest editions. I added a repo to just do a yum install of
> ES, and kibana is in my webroot directory.
>
> Basically I've just created a test server to see how well the setup
> will be compared to a live server and I'm running into some issues.
> I've followed the instructions from here.
> http://blog.sematext.com/2013/07/01/recipe-rsyslog-elasticsearch-kibana/and I
> added the config part in that tutorial to the rsyslog.conf.
>
> I've tested to make sure that rsyslog is running "logger blah blah blah"
> at the command line and It returns in the messages logs. So I think
> where I'm missing is from rsyslog to elasticsearch..
>
> When I go to my kibana webpage and try to search for logs that I know
> are there it doesn't return anything.
>
> Here is my rsyslog.conf
>
> ----------------------------------------------------------------------
> -----------------
>
>
> _______________________________________________
> rsyslog mailing list
> http://lists.adiscon.net/mailman/listinfo/rsyslog
> http://www.rsyslog.com/professional-services/
> What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE
> WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
> sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you
> DON'T LIKE THAT.
>
_______________________________________________
rsyslog mailing list
http://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is
a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our
control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
_______________________________________________
rsyslog mailing list
http://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE
THAT.
