Skip to content

Instantly share code, notes, and snippets.

@avielb

avielb/logstash_example.md

Created July 1, 2019 05:35
Show Gist options
  • Save avielb/bb2ff9ee8e65fba27620663aa680a0c2 to your computer and use it in GitHub Desktop.
Save avielb/bb2ff9ee8e65fba27620663aa680a0c2 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
logstash_example.md
  1. create a file: docker-elk/logstash/config/mylog.log
  2. change docker-compose to be:
  logstash:
    build:
      context: logstash/
      args:
        ELK_VERSION: $ELK_VERSION
    volumes:
      - ./logstash/config:/usr/share/logstash/config
      - ./logstash/pipeline:/usr/share/logstash/pipeline:ro
    ports:
      - "5000:5000"
      - "9600:9600"
    environment:
      LS_JAVA_OPTS: "-Xmx256m -Xms256m"
    networks:
      - elk
    depends_on:
      - elasticsearch
  1. change the docker-elk/logstash/pipeline/logstash.conf to be:
input {
    file {
        path => "/usr/share/logstash/config/mylog.log"
    }
}

output {
      elasticsearch {
          hosts => ["elasticsearch:9200"]
      }

      stdout { codec => rubydebug }
  }
  1. run docker exec -it docker-elk_logstash_1 echo test >> /usr/share/logstash/config/mylog.log
  2. open kibana screen and add logstash index that just now added under management > index patterns > create index pattern.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment