SlideShare a Scribd company logo

Logstash tutorial

H
HarikaReddy115

Logstash is an open-source tool that centralizes and processes logs and events from various sources. It is part of the ELK (Elasticsearch, Logstash, Kibana) stack. Logstash collects data from different sources using input plugins, parses and transforms the data using filters, and outputs the data to multiple destinations using output plugins. It is written in JRuby and can run on different platforms.

1 of 12
Download to read offline
Logstash i AbouttheTutorial Logstash is an open-source, centralized, events and logging manager. It is a part of the ELK (ElasticSearch, Logstash, Kibana) stack. In this tutorial, we will understand the basics of Logstash, its features, and the various components it has. Audience This tutorial is designed for software professionals who want to learn the basics of Logstash and its programming concepts in simple and easy steps. It describes the components and functions of Logstash with suitable examples. Prerequisites The readers are expected to have a basic understanding of Ruby, JSON, and web technologies. Additionally it will be helpful for the readers to be familiar with Logging Techniques and Regex patterns. CopyrightandDisclaimer  Copyright 2018 by Tutorials Point (I) Pvt. Ltd. All the content and graphics published in this e-book are the property of Tutorials Point (I) Pvt. Ltd. The user of this e-book is prohibited to reuse, retain, copy, distribute or republish any contents or a part of contents of this e-book in any manner without written consent of the publisher. We strive to update the contents of our website and tutorials as timely and as precisely as possible, however, the contents may contain inaccuracies or errors. Tutorials Point (I) Pvt. Ltd. provides no guarantee regarding the accuracy, timeliness or completeness of our website or its contents including this tutorial. If you discover any errors on our website or in this tutorial, please notify us at contact@tutorialspoint.com
Logstash ii TableofContents About the Tutorial ............................................................................................................................................i Audience...........................................................................................................................................................i Prerequisites.....................................................................................................................................................i Copyright and Disclaimer .................................................................................................................................i Table of Contents ............................................................................................................................................ ii 1. Logstash – Introduction ............................................................................................................................1 Logstash ─ General Features ...........................................................................................................................1 Logstash ─ Key Concepts .................................................................................................................................1 Logstash ─ Advantages ....................................................................................................................................2 Logstash ─ Disadvantages................................................................................................................................3 2. Logstash ─ ELK Stack .................................................................................................................................4 3. Logstash ─ Installation ..............................................................................................................................5 4. Logstash ─ Internal Architecture ...............................................................................................................8 Logstash ─ Service Architecture ......................................................................................................................8 Logstash ─ Internal Architecture .....................................................................................................................9 LOGSTASH — INPUT STAGE ......................................................................................................13 5. Logstash – Collecting Logs.......................................................................................................................14 Collecting Logs Using Apache Tomcat 7 Server.............................................................................................14 Collecting Logs Using STDIN Plugin................................................................................................................16 6. Logstash – Supported Inputs...................................................................................................................18 Collect Logs from Metrics..............................................................................................................................18 Collect Logs from the Web Server.................................................................................................................20 Collect Logs from Data sources .....................................................................................................................22 LOGSTASH — PARSE AND TRANSFORM ....................................................................................24 7. Logstash – Parsing the Logs.....................................................................................................................25 How to Parse the Logs? .................................................................................................................................25 8. Logstash – Filters ....................................................................................................................................27 Installing the Aggregate Filter Plugin.............................................................................................................27 9. Logstash – Transforming the Logs ...........................................................................................................30 Install the Mutate Filter Plugin......................................................................................................................30
Logstash iii LOGSTASH – OUTPUT STAGE ....................................................................................................33 10. Logstash – Output Stage .........................................................................................................................34 Storing Logs ...................................................................................................................................................34 Installing the Elasticsearch Output Plugin.....................................................................................................34 11. Logstash – Supported Outputs................................................................................................................39 Standard Output (stdout)..............................................................................................................................39 File Output.....................................................................................................................................................41 Null Output....................................................................................................................................................43 LOGSTASH – ADVANCED TOPICS...............................................................................................44 12. Logstash ─ Plugins...................................................................................................................................45 Input Plugins..................................................................................................................................................45 Plugin Settings ...............................................................................................................................................47 Logstash – Output Plugins .............................................................................................................................52 Codec plugins ................................................................................................................................................63 Build Your Own Plugin...................................................................................................................................64 13. Logstash ─ Monitoring APIs.....................................................................................................................68 Node Info API.................................................................................................................................................68 Plugins Info API..............................................................................................................................................69 Node Stats API...............................................................................................................................................71 Hot Threads API.............................................................................................................................................71 14. Logstash ─ Security and Monitoring........................................................................................................72 Monitoring.....................................................................................................................................................72 Security..........................................................................................................................................................73
Logstash 1 Logstash is a tool based on the filter/pipes patterns for gathering, processing and generating the logs or events. It helps in centralizing and making real time analysis of logs and events from different sources. Logstash is written on JRuby programming language that runs on the JVM, hence you can run Logstash on different platforms. It collects different types of data like Logs, Packets, Events, Transactions, Timestamp Data, etc., from almost every type of source. The data source can be Social data, E-commerce, News articles, CRM, Game data, Web trends, Financial data, Internet of Things, Mobile devices, etc. Logstash─GeneralFeatures The general features of Logstash are as follows:  Logstash can collect data from different sources and send to multiple destinations.  Logstash can handle all types of logging data like Apache Logs, Windows Event Logs, Data over Network Protocols, Data from Standard Input and many more.  Logstash can also handle http requests and response data.  Logstash provides a variety of filters, which helps the user to find more meaning in the data by parsing and transforming it.  Logstash can also be used for handling sensors data in internet of things.  Logstash is open source and available under the Apache license version 2.0. Logstash─KeyConcepts The key concepts of Logstash are as follows: Event Object It is the main object in Logstash, which encapsulates the data flow in the Logstash pipeline. Logstash uses this object to store the input data and add extra fields created during the filter stage. Logstash offers an Event API to developers to manipulate events. In this tutorial, this event is referred with various names like Logging Data Event, Log Event, Log Data, Input Log Data, Output Log Data, etc. Pipeline It comprises of data flow stages in Logstash from input to output. The input data is entered in the pipeline and is processed in the form of an event. Then sends to an output destination in the user or end system’s desirable format. Logstash – Introduction
Logstash 2 Input This is the first stage in the Logstash pipeline, which is used to get the data in Logstash for further processing. Logstash offers various plugins to get data from different platforms. Some of the most commonly used plugins are – File, Syslog, Redis and Beats. Filter This is the middle stage of Logstash, where the actual processing of events take place. A developer can use pre-defined Regex Patterns by Logstash to create sequences for differentiating between the fields in the events and criteria for accepted input events. Logstash offers various plugins to help the developer to parse and transform the events into a desirable structure. Some of the most commonly used filter plugins are – Grok, Mutate, Drop, Clone and Geoip. Output This is the last stage in the Logstash pipeline, where the output events can be formatted into the structure required by the destination systems. Lastly, it sends the output event after complete processing to the destination by using plugins. Some of the most commonly used plugins are – Elasticsearch, File, Graphite, Statsd, etc. Logstash─Advantages The following points explain the various advantages of Logstash.  Logstash offers regex pattern sequences to identify and parse the various fields in any input event.  Logstash supports a variety of web servers and data sources for extracting logging data.  Logstash provides multiple plugins to parse and transform the logging data into any user desirable format.  Logstash is centralized, which makes it easy to process and collect data from different servers.  Logstash supports many databases, network protocols and other services as a destination source for the logging events.  Logstash uses the HTTP protocol, which enables the user to upgrade Elasticsearch versions without having to upgrade Logstash in a lock step.
Logstash 3 Logstash─Disadvantages The following points explain the various disadvantages of Logstash.  Logstash uses http, which negatively affects the processing of the logging data.  Working with Logstash can sometimes be a little complex, as it needs a good understanding and analysis of the input logging data.  Filter plugins are not generic, so, the user may need to find the correct sequence of patterns to avoid error in parsing. In the next chapter, we will understand what the ELK Stack is and how it helps Logstash.
Logstash 4 ELK stands for Elasticsearch, Logstash, and Kibana. In the ELK stack, Logstash extracts the logging data or other events from different input sources. It processes the events and later stores it in Elasticsearch. Kibana is a web interface, which accesses the logging data form Elasticsearch and visualizes it. Logstash and Elasticsearch Logstash provides input and output Elasticsearch plugin to read and write log events to Elasticsearch. Elasticsearch as an output destination is also recommended by Elasticsearch Company because of its compatibility with Kibana. Logstash sends the data to Elasticsearch over the http protocol. Elasticsearch provides bulk upload facility, which helps to upload the data from different sources or Logstash instances to a centralized Elasticsearch engine. ELK has the following advantages over other DevOps Solutions:  ELK stack is easier to manage and can be scaled for handling petabytes of events.  ELK stack architecture is very flexible and it provides integration with Hadoop. Hadoop is mainly used for archive purposes. Logstash can be directly connected to Hadoop by using flume and Elasticsearch provides a connector named es-hadoop to connect with Hadoop.  ELK ownership total cost is much lesser than its alternatives. Logstash and Kibana Kibana does not interact with Logstash directly but through a data source, which is Elasticsearch in the ELK stack. Logstash collects the data from every source and Elasticsearch analyzes it at a very fast speed, then Kibana provides the actionable insights on that data. Kibana is a web based visualization tool, which helps developers and others to analyze the variations in large amounts of events collected by Logstash in Elasticsearch engine. This visualization makes it easy to predict or to see the changes in trends of errors or other significant events of the input source. Logstash ─ ELK Stack
Logstash 5 To install Logstash on the system, we should follow the steps given below: Step 1: Check the version of your Java installed in your computer; it should be Java 8 because it is not compatible with Java 9. You can check this by – In a Windows Operating System (OS) (using command prompt): > java -version In UNIX OS (Using Terminal): $ echo $JAVA_HOME Step 2: Download Logstash from – https://www.elastic.co/downloads/logstash.  For Windows OS, download the ZIP file.  For UNIX OS, download the TAR file.  For Debian OS download the DEB file.  For Red Hat and other Linux distributions, download the RPN file.  APT and Yum utilities can also be used to install Logstash in many Linux distributions. Step 3: The installation process for Logstash is very easy. Let’s see how you can install Logstash on different platforms. Note: Do not put any whitespace or colon in the installation folder.  Windows OS: Unzip the zip package and the Logstash is installed.  UNIX OS: Extract the tar file in any location and the Logstash is installed. $tar –xvf logstash-5.0.2.tar.gz  Using APT utility for Linux OS: o Download and install the Public Signing Key: $ wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add - Logstash ─ Installation
Logstash 6 o Save the repository definition: $ echo "deb https://artifacts.elastic.co/packages/5.x/apt stable main" | sudo tee -a /etc/apt/sources.list.d/elastic-5.x.list o Run update: $ sudo apt-get update o Now you can install by using the following command: $ sudo apt-get install logstash  Using YUM utility for Debian Linux OS: o Download and install the Public Signing Key: $ rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch o Add the following text in the file with the .repo suffix in your “/etc/yum.repos.d/” directory. For example, logstash.repo [logstash-5.x] name=Elastic repository for 5.x packages baseurl=https://artifacts.elastic.co/packages/5.x/yum gpgcheck=1 gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch enabled=1 autorefresh=1 type=rpm-md o You can now install Logstash by using the following command: $ sudo yum install logstash
Logstash 7 Step 4: Go to the Logstash home directory. Inside the bin folder, run the elasticsearch.bat file in case of windows or you can do the same using the command prompt and through the terminal. In UNIX, run the Logstash file. We need to specify the input source, output source and optional filters. For verifying the installation, you can run it with the basic configuration by using a standard input stream (stdin) as the input source and a standard output stream (stdout) as the output source. You can specify the configuration in the command line also by using –e option. In Windows: > cd logstash-5.0.1/bin > Logstash -e 'input { stdin { } } output { stdout {} }' In Linux: $ cd logstash-5.0.1/bin $ ./logstash -e 'input { stdin { } } output { stdout {} }' Note: in case of windows, you might get an error stating JAVA_HOME is not set. For this, please set it in environment variables to “C:Program FilesJavajre1.8.0_111” or the location where you installed java. Step 5: Default ports for Logstash web interface are 9600 to 9700 are defined in the logstash-5.0.1configlogstash.yml as the http.port and it will pick up the first available port in the given range. We can check if the Logstash server is up and running by browsing http://localhost:9600 or if the port is different and then please check the command prompt or terminal. We can see the assigned port as “Successfully started Logstash API endpoint {:port=>9600}. It will return a JSON object, which contains the information about the installed Logstash in the following way: { "host":"manu-PC", "version":"5.0.1", "http_address":"127.0.0.1:9600", "build_date":"2016-11-11T22:28:04+00:00", "build_sha":"2d8d6263dd09417793f2a0c6d5ee702063b5fada", "build_snapshot":false }
Logstash 8 End of ebook preview If you liked what you saw… Buy it from our store @ https://store.tutorialspoint.com

Recommended

Soapui tutorial
Soapui tutorialSoapui tutorial
Soapui tutorial
HarikaReddy115
 
Log4 C Developers Guide
Log4 C Developers GuideLog4 C Developers Guide
Log4 C Developers Guidegzm55
 
Log4c developersguide
Log4c developersguideLog4c developersguide
Log4c developersguide
hik_lhz
 
Xslt tutorial
Xslt tutorialXslt tutorial
Xslt tutorial
Ashoka Vanjare
 
Xpath tutorial
Xpath tutorialXpath tutorial
Xpath tutorial
Ashoka Vanjare
 
PHP-Nuke-HOWTO
PHP-Nuke-HOWTOPHP-Nuke-HOWTO
PHP-Nuke-HOWTOtutorialsruby
 
PHP-Nuke-HOWTO
PHP-Nuke-HOWTOPHP-Nuke-HOWTO
PHP-Nuke-HOWTOtutorialsruby
 
Guide to MemoQ
Guide to MemoQGuide to MemoQ
Guide to MemoQ
MichelaMuratori1
 

Recommended

Soapui tutorial
Soapui tutorialSoapui tutorial
Soapui tutorial
HarikaReddy115
 
Log4 C Developers Guide
Log4 C Developers GuideLog4 C Developers Guide
Log4 C Developers Guidegzm55
 
Log4c developersguide
Log4c developersguideLog4c developersguide
Log4c developersguide
hik_lhz
 
Xslt tutorial
Xslt tutorialXslt tutorial
Xslt tutorial
Ashoka Vanjare
 
Xpath tutorial
Xpath tutorialXpath tutorial
Xpath tutorial
Ashoka Vanjare
 
PHP-Nuke-HOWTO
PHP-Nuke-HOWTOPHP-Nuke-HOWTO
PHP-Nuke-HOWTOtutorialsruby
 
PHP-Nuke-HOWTO
PHP-Nuke-HOWTOPHP-Nuke-HOWTO
PHP-Nuke-HOWTOtutorialsruby
 
Guide to MemoQ
Guide to MemoQGuide to MemoQ
Guide to MemoQ
MichelaMuratori1
 
Magento Design Guide
Magento Design GuideMagento Design Guide
Magento Design Guide
Daniele Crupi
 
Saltstack tutorial
Saltstack tutorialSaltstack tutorial
Saltstack tutorial
HarikaReddy115
 
Xml tutorial
Xml tutorialXml tutorial
Xml tutorial
Ashoka Vanjare
 
Numpy tutorial
Numpy tutorialNumpy tutorial
Numpy tutorial
HarikaReddy115
 
Scrapy tutorial
Scrapy tutorialScrapy tutorial
Scrapy tutorial
HarikaReddy115
 
Django tutorial
Django tutorialDjango tutorial
Django tutorial
HarikaReddy115
 
El essentials
El essentialsEl essentials
El essentials祖韵 王
 
sap-fico-complete-end-user-manual-realtime-project.pdf
sap-fico-complete-end-user-manual-realtime-project.pdfsap-fico-complete-end-user-manual-realtime-project.pdf
sap-fico-complete-end-user-manual-realtime-project.pdf
mighori2
 
Sap fico-complete-end-user-manual
Sap fico-complete-end-user-manualSap fico-complete-end-user-manual
Sap fico-complete-end-user-manualDhaval Choksi
 
SAP FICO_end user manual.pdf
SAP FICO_end user manual.pdfSAP FICO_end user manual.pdf
SAP FICO_end user manual.pdf
estivali10
 
Sap fico complete end user manual
Sap fico complete end user manualSap fico complete end user manual
Sap fico complete end user manual
Sajid Ali CIA, CA-Inter
 
Sap FICO complete end user manual
Sap FICO complete end user manual Sap FICO complete end user manual
Sap FICO complete end user manual
learnstraightsap
 
Creating content packs in VMware LogInsight
Creating content packs in VMware LogInsightCreating content packs in VMware LogInsight
Creating content packs in VMware LogInsight
David Pasek
 
Javascript tutorial
Javascript tutorialJavascript tutorial
Javascript tutorial
HarikaReddy115
 
javascript_tutorial.pdf
javascript_tutorial.pdfjavascript_tutorial.pdf
javascript_tutorial.pdf
kaouthar20
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
Phani Patibandla
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
Prem Kumar
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
Sharma Joshi
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoIvs Naresh
 
Jquery tutorial
Jquery tutorialJquery tutorial
Jquery tutorial
HarikaReddy115
 
Dbms tutorial
Dbms tutorialDbms tutorial
Dbms tutorial
HarikaReddy115
 
Data structures algorithms_tutorial
Data structures algorithms_tutorialData structures algorithms_tutorial
Data structures algorithms_tutorial
HarikaReddy115
 

More Related Content

Similar to Logstash tutorial

Magento Design Guide
Magento Design GuideMagento Design Guide
Magento Design Guide
Daniele Crupi
 
Saltstack tutorial
Saltstack tutorialSaltstack tutorial
Saltstack tutorial
HarikaReddy115
 
Xml tutorial
Xml tutorialXml tutorial
Xml tutorial
Ashoka Vanjare
 
Numpy tutorial
Numpy tutorialNumpy tutorial
Numpy tutorial
HarikaReddy115
 
Scrapy tutorial
Scrapy tutorialScrapy tutorial
Scrapy tutorial
HarikaReddy115
 
Django tutorial
Django tutorialDjango tutorial
Django tutorial
HarikaReddy115
 
sap-fico-complete-end-user-manual-realtime-project.pdf
sap-fico-complete-end-user-manual-realtime-project.pdfsap-fico-complete-end-user-manual-realtime-project.pdf
sap-fico-complete-end-user-manual-realtime-project.pdf
mighori2
 
Sap fico-complete-end-user-manual
Sap fico-complete-end-user-manualSap fico-complete-end-user-manual
Sap fico-complete-end-user-manualDhaval Choksi
 
SAP FICO_end user manual.pdf
SAP FICO_end user manual.pdfSAP FICO_end user manual.pdf
SAP FICO_end user manual.pdf
estivali10
 
Sap fico complete end user manual
Sap fico complete end user manualSap fico complete end user manual
Sap fico complete end user manual
Sajid Ali CIA, CA-Inter
 
Sap FICO complete end user manual
Sap FICO complete end user manual Sap FICO complete end user manual
Sap FICO complete end user manual
learnstraightsap
 
Creating content packs in VMware LogInsight
Creating content packs in VMware LogInsightCreating content packs in VMware LogInsight
Creating content packs in VMware LogInsight
David Pasek
 
Javascript tutorial
Javascript tutorialJavascript tutorial
Javascript tutorial
HarikaReddy115
 
javascript_tutorial.pdf
javascript_tutorial.pdfjavascript_tutorial.pdf
javascript_tutorial.pdf
kaouthar20
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
Phani Patibandla
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
Prem Kumar
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
Sharma Joshi
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoIvs Naresh
 
Jquery tutorial
Jquery tutorialJquery tutorial
Jquery tutorial
HarikaReddy115
 

Similar to Logstash tutorial (20)

Magento Design Guide
Magento Design GuideMagento Design Guide
Magento Design Guide
 
Saltstack tutorial
Saltstack tutorialSaltstack tutorial
Saltstack tutorial
 
Xml tutorial
Xml tutorialXml tutorial
Xml tutorial
 
Numpy tutorial
Numpy tutorialNumpy tutorial
Numpy tutorial
 
Scrapy tutorial
Scrapy tutorialScrapy tutorial
Scrapy tutorial
 
Django tutorial
Django tutorialDjango tutorial
Django tutorial
 
El essentials
El essentialsEl essentials
El essentials
 
sap-fico-complete-end-user-manual-realtime-project.pdf
sap-fico-complete-end-user-manual-realtime-project.pdfsap-fico-complete-end-user-manual-realtime-project.pdf
sap-fico-complete-end-user-manual-realtime-project.pdf
 
Sap fico-complete-end-user-manual
Sap fico-complete-end-user-manualSap fico-complete-end-user-manual
Sap fico-complete-end-user-manual
 
SAP FICO_end user manual.pdf
SAP FICO_end user manual.pdfSAP FICO_end user manual.pdf
SAP FICO_end user manual.pdf
 
Sap fico complete end user manual
Sap fico complete end user manualSap fico complete end user manual
Sap fico complete end user manual
 
Sap FICO complete end user manual
Sap FICO complete end user manual Sap FICO complete end user manual
Sap FICO complete end user manual
 
Creating content packs in VMware LogInsight
Creating content packs in VMware LogInsightCreating content packs in VMware LogInsight
Creating content packs in VMware LogInsight
 
Javascript tutorial
Javascript tutorialJavascript tutorial
Javascript tutorial
 
javascript_tutorial.pdf
javascript_tutorial.pdfjavascript_tutorial.pdf
javascript_tutorial.pdf
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
 
Ale edi i_doc.sapdb.info
Ale edi i_doc.sapdb.infoAle edi i_doc.sapdb.info
Ale edi i_doc.sapdb.info
 
Jquery tutorial
Jquery tutorialJquery tutorial
Jquery tutorial
 

More from HarikaReddy115

Dbms tutorial
Dbms tutorialDbms tutorial
Dbms tutorial
HarikaReddy115
 
Data structures algorithms_tutorial
Data structures algorithms_tutorialData structures algorithms_tutorial
Data structures algorithms_tutorial
HarikaReddy115
 
Wireless communication tutorial
Wireless communication tutorialWireless communication tutorial
Wireless communication tutorial
HarikaReddy115
 
Cryptography tutorial
Cryptography tutorialCryptography tutorial
Cryptography tutorial
HarikaReddy115
 
Cosmology tutorial
Cosmology tutorialCosmology tutorial
Cosmology tutorial
HarikaReddy115
 
Control systems tutorial
Control systems tutorialControl systems tutorial
Control systems tutorial
HarikaReddy115
 
Computer logical organization_tutorial
Computer logical organization_tutorialComputer logical organization_tutorial
Computer logical organization_tutorial
HarikaReddy115
 
Computer fundamentals tutorial
Computer fundamentals tutorialComputer fundamentals tutorial
Computer fundamentals tutorial
HarikaReddy115
 
Compiler design tutorial
Compiler design tutorialCompiler design tutorial
Compiler design tutorial
HarikaReddy115
 
Communication technologies tutorial
Communication technologies tutorialCommunication technologies tutorial
Communication technologies tutorial
HarikaReddy115
 
Biometrics tutorial
Biometrics tutorialBiometrics tutorial
Biometrics tutorial
HarikaReddy115
 
Behavior driven development_tutorial
Behavior driven development_tutorialBehavior driven development_tutorial
Behavior driven development_tutorial
HarikaReddy115
 
Basics of computers_tutorial
Basics of computers_tutorialBasics of computers_tutorial
Basics of computers_tutorial
HarikaReddy115
 
Basics of computer_science_tutorial
Basics of computer_science_tutorialBasics of computer_science_tutorial
Basics of computer_science_tutorial
HarikaReddy115
 
Basic electronics tutorial
Basic electronics tutorialBasic electronics tutorial
Basic electronics tutorial
HarikaReddy115
 
Auditing tutorial
Auditing tutorialAuditing tutorial
Auditing tutorial
HarikaReddy115
 
Artificial neural network_tutorial
Artificial neural network_tutorialArtificial neural network_tutorial
Artificial neural network_tutorial
HarikaReddy115
 
Artificial intelligence tutorial
Artificial intelligence tutorialArtificial intelligence tutorial
Artificial intelligence tutorial
HarikaReddy115
 
Antenna theory tutorial
Antenna theory tutorialAntenna theory tutorial
Antenna theory tutorial
HarikaReddy115
 
Analog communication tutorial
Analog communication tutorialAnalog communication tutorial
Analog communication tutorial
HarikaReddy115
 

More from HarikaReddy115 (20)

Dbms tutorial
Dbms tutorialDbms tutorial
Dbms tutorial
 
Data structures algorithms_tutorial
Data structures algorithms_tutorialData structures algorithms_tutorial
Data structures algorithms_tutorial
 
Wireless communication tutorial
Wireless communication tutorialWireless communication tutorial
Wireless communication tutorial
 
Cryptography tutorial
Cryptography tutorialCryptography tutorial
Cryptography tutorial
 
Cosmology tutorial
Cosmology tutorialCosmology tutorial
Cosmology tutorial
 
Control systems tutorial
Control systems tutorialControl systems tutorial
Control systems tutorial
 
Computer logical organization_tutorial
Computer logical organization_tutorialComputer logical organization_tutorial
Computer logical organization_tutorial
 
Computer fundamentals tutorial
Computer fundamentals tutorialComputer fundamentals tutorial
Computer fundamentals tutorial
 
Compiler design tutorial
Compiler design tutorialCompiler design tutorial
Compiler design tutorial
 
Communication technologies tutorial
Communication technologies tutorialCommunication technologies tutorial
Communication technologies tutorial
 
Biometrics tutorial
Biometrics tutorialBiometrics tutorial
Biometrics tutorial
 
Behavior driven development_tutorial
Behavior driven development_tutorialBehavior driven development_tutorial
Behavior driven development_tutorial
 
Basics of computers_tutorial
Basics of computers_tutorialBasics of computers_tutorial
Basics of computers_tutorial
 
Basics of computer_science_tutorial
Basics of computer_science_tutorialBasics of computer_science_tutorial
Basics of computer_science_tutorial
 
Basic electronics tutorial
Basic electronics tutorialBasic electronics tutorial
Basic electronics tutorial
 
Auditing tutorial
Auditing tutorialAuditing tutorial
Auditing tutorial
 
Artificial neural network_tutorial
Artificial neural network_tutorialArtificial neural network_tutorial
Artificial neural network_tutorial
 
Artificial intelligence tutorial
Artificial intelligence tutorialArtificial intelligence tutorial
Artificial intelligence tutorial
 
Antenna theory tutorial
Antenna theory tutorialAntenna theory tutorial
Antenna theory tutorial
 
Analog communication tutorial
Analog communication tutorialAnalog communication tutorial
Analog communication tutorial
 

Recently uploaded

CACJapan - GROUP Presentation 1- Wk 4.pdf
CACJapan - GROUP Presentation 1- Wk 4.pdfCACJapan - GROUP Presentation 1- Wk 4.pdf
CACJapan - GROUP Presentation 1- Wk 4.pdf
camakaiclarkmusic
 
Guidance_and_Counselling.pdf B.Ed. 4th Semester
Guidance_and_Counselling.pdf B.Ed. 4th SemesterGuidance_and_Counselling.pdf B.Ed. 4th Semester
Guidance_and_Counselling.pdf B.Ed. 4th Semester
Atul Kumar Singh
 
Instructions for Submissions thorugh G- Classroom.pptx
Instructions for Submissions thorugh G- Classroom.pptxInstructions for Submissions thorugh G- Classroom.pptx
Instructions for Submissions thorugh G- Classroom.pptx
Jheel Barad
 
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdf
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdfWelcome to TechSoup New Member Orientation and Q&A (May 2024).pdf
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdf
TechSoup
 
The French Revolution Class 9 Study Material pdf free download
The French Revolution Class 9 Study Material pdf free downloadThe French Revolution Class 9 Study Material pdf free download
The French Revolution Class 9 Study Material pdf free download
Vivekanand Anglo Vedic Academy
 
The geography of Taylor Swift - some ideas
The geography of Taylor Swift - some ideasThe geography of Taylor Swift - some ideas
The geography of Taylor Swift - some ideas
GeoBlogs
 
"Protectable subject matters, Protection in biotechnology, Protection of othe...
"Protectable subject matters, Protection in biotechnology, Protection of othe..."Protectable subject matters, Protection in biotechnology, Protection of othe...
"Protectable subject matters, Protection in biotechnology, Protection of othe...
SACHIN R KONDAGURI
 
Polish students' mobility in the Czech Republic
Polish students' mobility in the Czech RepublicPolish students' mobility in the Czech Republic
Polish students' mobility in the Czech Republic
Anna Sz.
 
Unit 2- Research Aptitude (UGC NET Paper I).pdf
Unit 2- Research Aptitude (UGC NET Paper I).pdfUnit 2- Research Aptitude (UGC NET Paper I).pdf
Unit 2- Research Aptitude (UGC NET Paper I).pdf
Thiyagu K
 
Model Attribute Check Company Auto Property
Model Attribute Check Company Auto PropertyModel Attribute Check Company Auto Property
Model Attribute Check Company Auto Property
Celine George
 
Supporting (UKRI) OA monographs at Salford.pptx
Supporting (UKRI) OA monographs at Salford.pptxSupporting (UKRI) OA monographs at Salford.pptx
Supporting (UKRI) OA monographs at Salford.pptx
Jisc
 
special B.ed 2nd year old paper_20240531.pdf
special B.ed 2nd year old paper_20240531.pdfspecial B.ed 2nd year old paper_20240531.pdf
special B.ed 2nd year old paper_20240531.pdf
Special education needs
 
Embracing GenAI - A Strategic Imperative
Embracing GenAI - A Strategic ImperativeEmbracing GenAI - A Strategic Imperative
Embracing GenAI - A Strategic Imperative
Peter Windle
 
2024.06.01 Introducing a competency framework for languag learning materials ...
2024.06.01 Introducing a competency framework for languag learning materials ...2024.06.01 Introducing a competency framework for languag learning materials ...
2024.06.01 Introducing a competency framework for languag learning materials ...
Sandy Millin
 
TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...
TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...
TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...
EugeneSaldivar
 
Adversarial Attention Modeling for Multi-dimensional Emotion Regression.pdf
Adversarial Attention Modeling for Multi-dimensional Emotion Regression.pdfAdversarial Attention Modeling for Multi-dimensional Emotion Regression.pdf
Adversarial Attention Modeling for Multi-dimensional Emotion Regression.pdf
Po-Chuan Chen
 
Home assignment II on Spectroscopy 2024 Answers.pdf
Home assignment II on Spectroscopy 2024 Answers.pdfHome assignment II on Spectroscopy 2024 Answers.pdf
Home assignment II on Spectroscopy 2024 Answers.pdf
Tamralipta Mahavidyalaya
 
Introduction to AI for Nonprofits with Tapp Network
Introduction to AI for Nonprofits with Tapp NetworkIntroduction to AI for Nonprofits with Tapp Network
Introduction to AI for Nonprofits with Tapp Network
TechSoup
 
Sha'Carri Richardson Presentation 202345
Sha'Carri Richardson Presentation 202345Sha'Carri Richardson Presentation 202345
Sha'Carri Richardson Presentation 202345
beazzy04
 
The approach at University of Liverpool.pptx
The approach at University of Liverpool.pptxThe approach at University of Liverpool.pptx
The approach at University of Liverpool.pptx
Jisc
 

Recently uploaded (20)

CACJapan - GROUP Presentation 1- Wk 4.pdf
CACJapan - GROUP Presentation 1- Wk 4.pdfCACJapan - GROUP Presentation 1- Wk 4.pdf
CACJapan - GROUP Presentation 1- Wk 4.pdf
 
Guidance_and_Counselling.pdf B.Ed. 4th Semester
Guidance_and_Counselling.pdf B.Ed. 4th SemesterGuidance_and_Counselling.pdf B.Ed. 4th Semester
Guidance_and_Counselling.pdf B.Ed. 4th Semester
 
Instructions for Submissions thorugh G- Classroom.pptx
Instructions for Submissions thorugh G- Classroom.pptxInstructions for Submissions thorugh G- Classroom.pptx
Instructions for Submissions thorugh G- Classroom.pptx
 
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdf
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdfWelcome to TechSoup New Member Orientation and Q&A (May 2024).pdf
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdf
 
The French Revolution Class 9 Study Material pdf free download
The French Revolution Class 9 Study Material pdf free downloadThe French Revolution Class 9 Study Material pdf free download
The French Revolution Class 9 Study Material pdf free download
 
The geography of Taylor Swift - some ideas
The geography of Taylor Swift - some ideasThe geography of Taylor Swift - some ideas
The geography of Taylor Swift - some ideas
 
"Protectable subject matters, Protection in biotechnology, Protection of othe...
"Protectable subject matters, Protection in biotechnology, Protection of othe..."Protectable subject matters, Protection in biotechnology, Protection of othe...
"Protectable subject matters, Protection in biotechnology, Protection of othe...
 
Polish students' mobility in the Czech Republic
Polish students' mobility in the Czech RepublicPolish students' mobility in the Czech Republic
Polish students' mobility in the Czech Republic
 
Unit 2- Research Aptitude (UGC NET Paper I).pdf
Unit 2- Research Aptitude (UGC NET Paper I).pdfUnit 2- Research Aptitude (UGC NET Paper I).pdf
Unit 2- Research Aptitude (UGC NET Paper I).pdf
 
Model Attribute Check Company Auto Property
Model Attribute Check Company Auto PropertyModel Attribute Check Company Auto Property
Model Attribute Check Company Auto Property
 
Supporting (UKRI) OA monographs at Salford.pptx
Supporting (UKRI) OA monographs at Salford.pptxSupporting (UKRI) OA monographs at Salford.pptx
Supporting (UKRI) OA monographs at Salford.pptx
 
special B.ed 2nd year old paper_20240531.pdf
special B.ed 2nd year old paper_20240531.pdfspecial B.ed 2nd year old paper_20240531.pdf
special B.ed 2nd year old paper_20240531.pdf
 
Embracing GenAI - A Strategic Imperative
Embracing GenAI - A Strategic ImperativeEmbracing GenAI - A Strategic Imperative
Embracing GenAI - A Strategic Imperative
 
2024.06.01 Introducing a competency framework for languag learning materials ...
2024.06.01 Introducing a competency framework for languag learning materials ...2024.06.01 Introducing a competency framework for languag learning materials ...
2024.06.01 Introducing a competency framework for languag learning materials ...
 
TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...
TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...
TESDA TM1 REVIEWER FOR NATIONAL ASSESSMENT WRITTEN AND ORAL QUESTIONS WITH A...
 
Adversarial Attention Modeling for Multi-dimensional Emotion Regression.pdf
Adversarial Attention Modeling for Multi-dimensional Emotion Regression.pdfAdversarial Attention Modeling for Multi-dimensional Emotion Regression.pdf
Adversarial Attention Modeling for Multi-dimensional Emotion Regression.pdf
 
Home assignment II on Spectroscopy 2024 Answers.pdf
Home assignment II on Spectroscopy 2024 Answers.pdfHome assignment II on Spectroscopy 2024 Answers.pdf
Home assignment II on Spectroscopy 2024 Answers.pdf
 
Introduction to AI for Nonprofits with Tapp Network
Introduction to AI for Nonprofits with Tapp NetworkIntroduction to AI for Nonprofits with Tapp Network
Introduction to AI for Nonprofits with Tapp Network
 
Sha'Carri Richardson Presentation 202345
Sha'Carri Richardson Presentation 202345Sha'Carri Richardson Presentation 202345
Sha'Carri Richardson Presentation 202345
 
The approach at University of Liverpool.pptx
The approach at University of Liverpool.pptxThe approach at University of Liverpool.pptx
The approach at University of Liverpool.pptx
 

Logstash tutorial

  • 1.
  • 2. Logstash i AbouttheTutorial Logstash is an open-source, centralized, events and logging manager. It is a part of the ELK (ElasticSearch, Logstash, Kibana) stack. In this tutorial, we will understand the basics of Logstash, its features, and the various components it has. Audience This tutorial is designed for software professionals who want to learn the basics of Logstash and its programming concepts in simple and easy steps. It describes the components and functions of Logstash with suitable examples. Prerequisites The readers are expected to have a basic understanding of Ruby, JSON, and web technologies. Additionally it will be helpful for the readers to be familiar with Logging Techniques and Regex patterns. CopyrightandDisclaimer  Copyright 2018 by Tutorials Point (I) Pvt. Ltd. All the content and graphics published in this e-book are the property of Tutorials Point (I) Pvt. Ltd. The user of this e-book is prohibited to reuse, retain, copy, distribute or republish any contents or a part of contents of this e-book in any manner without written consent of the publisher. We strive to update the contents of our website and tutorials as timely and as precisely as possible, however, the contents may contain inaccuracies or errors. Tutorials Point (I) Pvt. Ltd. provides no guarantee regarding the accuracy, timeliness or completeness of our website or its contents including this tutorial. If you discover any errors on our website or in this tutorial, please notify us at contact@tutorialspoint.com
  • 3. Logstash ii TableofContents About the Tutorial ............................................................................................................................................i Audience...........................................................................................................................................................i Prerequisites.....................................................................................................................................................i Copyright and Disclaimer .................................................................................................................................i Table of Contents ............................................................................................................................................ ii 1. Logstash – Introduction ............................................................................................................................1 Logstash ─ General Features ...........................................................................................................................1 Logstash ─ Key Concepts .................................................................................................................................1 Logstash ─ Advantages ....................................................................................................................................2 Logstash ─ Disadvantages................................................................................................................................3 2. Logstash ─ ELK Stack .................................................................................................................................4 3. Logstash ─ Installation ..............................................................................................................................5 4. Logstash ─ Internal Architecture ...............................................................................................................8 Logstash ─ Service Architecture ......................................................................................................................8 Logstash ─ Internal Architecture .....................................................................................................................9 LOGSTASH — INPUT STAGE ......................................................................................................13 5. Logstash – Collecting Logs.......................................................................................................................14 Collecting Logs Using Apache Tomcat 7 Server.............................................................................................14 Collecting Logs Using STDIN Plugin................................................................................................................16 6. Logstash – Supported Inputs...................................................................................................................18 Collect Logs from Metrics..............................................................................................................................18 Collect Logs from the Web Server.................................................................................................................20 Collect Logs from Data sources .....................................................................................................................22 LOGSTASH — PARSE AND TRANSFORM ....................................................................................24 7. Logstash – Parsing the Logs.....................................................................................................................25 How to Parse the Logs? .................................................................................................................................25 8. Logstash – Filters ....................................................................................................................................27 Installing the Aggregate Filter Plugin.............................................................................................................27 9. Logstash – Transforming the Logs ...........................................................................................................30 Install the Mutate Filter Plugin......................................................................................................................30
  • 4. Logstash iii LOGSTASH – OUTPUT STAGE ....................................................................................................33 10. Logstash – Output Stage .........................................................................................................................34 Storing Logs ...................................................................................................................................................34 Installing the Elasticsearch Output Plugin.....................................................................................................34 11. Logstash – Supported Outputs................................................................................................................39 Standard Output (stdout)..............................................................................................................................39 File Output.....................................................................................................................................................41 Null Output....................................................................................................................................................43 LOGSTASH – ADVANCED TOPICS...............................................................................................44 12. Logstash ─ Plugins...................................................................................................................................45 Input Plugins..................................................................................................................................................45 Plugin Settings ...............................................................................................................................................47 Logstash – Output Plugins .............................................................................................................................52 Codec plugins ................................................................................................................................................63 Build Your Own Plugin...................................................................................................................................64 13. Logstash ─ Monitoring APIs.....................................................................................................................68 Node Info API.................................................................................................................................................68 Plugins Info API..............................................................................................................................................69 Node Stats API...............................................................................................................................................71 Hot Threads API.............................................................................................................................................71 14. Logstash ─ Security and Monitoring........................................................................................................72 Monitoring.....................................................................................................................................................72 Security..........................................................................................................................................................73
  • 5. Logstash 1 Logstash is a tool based on the filter/pipes patterns for gathering, processing and generating the logs or events. It helps in centralizing and making real time analysis of logs and events from different sources. Logstash is written on JRuby programming language that runs on the JVM, hence you can run Logstash on different platforms. It collects different types of data like Logs, Packets, Events, Transactions, Timestamp Data, etc., from almost every type of source. The data source can be Social data, E-commerce, News articles, CRM, Game data, Web trends, Financial data, Internet of Things, Mobile devices, etc. Logstash─GeneralFeatures The general features of Logstash are as follows:  Logstash can collect data from different sources and send to multiple destinations.  Logstash can handle all types of logging data like Apache Logs, Windows Event Logs, Data over Network Protocols, Data from Standard Input and many more.  Logstash can also handle http requests and response data.  Logstash provides a variety of filters, which helps the user to find more meaning in the data by parsing and transforming it.  Logstash can also be used for handling sensors data in internet of things.  Logstash is open source and available under the Apache license version 2.0. Logstash─KeyConcepts The key concepts of Logstash are as follows: Event Object It is the main object in Logstash, which encapsulates the data flow in the Logstash pipeline. Logstash uses this object to store the input data and add extra fields created during the filter stage. Logstash offers an Event API to developers to manipulate events. In this tutorial, this event is referred with various names like Logging Data Event, Log Event, Log Data, Input Log Data, Output Log Data, etc. Pipeline It comprises of data flow stages in Logstash from input to output. The input data is entered in the pipeline and is processed in the form of an event. Then sends to an output destination in the user or end system’s desirable format. Logstash – Introduction
  • 6. Logstash 2 Input This is the first stage in the Logstash pipeline, which is used to get the data in Logstash for further processing. Logstash offers various plugins to get data from different platforms. Some of the most commonly used plugins are – File, Syslog, Redis and Beats. Filter This is the middle stage of Logstash, where the actual processing of events take place. A developer can use pre-defined Regex Patterns by Logstash to create sequences for differentiating between the fields in the events and criteria for accepted input events. Logstash offers various plugins to help the developer to parse and transform the events into a desirable structure. Some of the most commonly used filter plugins are – Grok, Mutate, Drop, Clone and Geoip. Output This is the last stage in the Logstash pipeline, where the output events can be formatted into the structure required by the destination systems. Lastly, it sends the output event after complete processing to the destination by using plugins. Some of the most commonly used plugins are – Elasticsearch, File, Graphite, Statsd, etc. Logstash─Advantages The following points explain the various advantages of Logstash.  Logstash offers regex pattern sequences to identify and parse the various fields in any input event.  Logstash supports a variety of web servers and data sources for extracting logging data.  Logstash provides multiple plugins to parse and transform the logging data into any user desirable format.  Logstash is centralized, which makes it easy to process and collect data from different servers.  Logstash supports many databases, network protocols and other services as a destination source for the logging events.  Logstash uses the HTTP protocol, which enables the user to upgrade Elasticsearch versions without having to upgrade Logstash in a lock step.
  • 7. Logstash 3 Logstash─Disadvantages The following points explain the various disadvantages of Logstash.  Logstash uses http, which negatively affects the processing of the logging data.  Working with Logstash can sometimes be a little complex, as it needs a good understanding and analysis of the input logging data.  Filter plugins are not generic, so, the user may need to find the correct sequence of patterns to avoid error in parsing. In the next chapter, we will understand what the ELK Stack is and how it helps Logstash.
  • 8. Logstash 4 ELK stands for Elasticsearch, Logstash, and Kibana. In the ELK stack, Logstash extracts the logging data or other events from different input sources. It processes the events and later stores it in Elasticsearch. Kibana is a web interface, which accesses the logging data form Elasticsearch and visualizes it. Logstash and Elasticsearch Logstash provides input and output Elasticsearch plugin to read and write log events to Elasticsearch. Elasticsearch as an output destination is also recommended by Elasticsearch Company because of its compatibility with Kibana. Logstash sends the data to Elasticsearch over the http protocol. Elasticsearch provides bulk upload facility, which helps to upload the data from different sources or Logstash instances to a centralized Elasticsearch engine. ELK has the following advantages over other DevOps Solutions:  ELK stack is easier to manage and can be scaled for handling petabytes of events.  ELK stack architecture is very flexible and it provides integration with Hadoop. Hadoop is mainly used for archive purposes. Logstash can be directly connected to Hadoop by using flume and Elasticsearch provides a connector named es-hadoop to connect with Hadoop.  ELK ownership total cost is much lesser than its alternatives. Logstash and Kibana Kibana does not interact with Logstash directly but through a data source, which is Elasticsearch in the ELK stack. Logstash collects the data from every source and Elasticsearch analyzes it at a very fast speed, then Kibana provides the actionable insights on that data. Kibana is a web based visualization tool, which helps developers and others to analyze the variations in large amounts of events collected by Logstash in Elasticsearch engine. This visualization makes it easy to predict or to see the changes in trends of errors or other significant events of the input source. Logstash ─ ELK Stack
  • 9. Logstash 5 To install Logstash on the system, we should follow the steps given below: Step 1: Check the version of your Java installed in your computer; it should be Java 8 because it is not compatible with Java 9. You can check this by – In a Windows Operating System (OS) (using command prompt): > java -version In UNIX OS (Using Terminal): $ echo $JAVA_HOME Step 2: Download Logstash from – https://www.elastic.co/downloads/logstash.  For Windows OS, download the ZIP file.  For UNIX OS, download the TAR file.  For Debian OS download the DEB file.  For Red Hat and other Linux distributions, download the RPN file.  APT and Yum utilities can also be used to install Logstash in many Linux distributions. Step 3: The installation process for Logstash is very easy. Let’s see how you can install Logstash on different platforms. Note: Do not put any whitespace or colon in the installation folder.  Windows OS: Unzip the zip package and the Logstash is installed.  UNIX OS: Extract the tar file in any location and the Logstash is installed. $tar –xvf logstash-5.0.2.tar.gz  Using APT utility for Linux OS: o Download and install the Public Signing Key: $ wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add - Logstash ─ Installation
  • 10. Logstash 6 o Save the repository definition: $ echo "deb https://artifacts.elastic.co/packages/5.x/apt stable main" | sudo tee -a /etc/apt/sources.list.d/elastic-5.x.list o Run update: $ sudo apt-get update o Now you can install by using the following command: $ sudo apt-get install logstash  Using YUM utility for Debian Linux OS: o Download and install the Public Signing Key: $ rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch o Add the following text in the file with the .repo suffix in your “/etc/yum.repos.d/” directory. For example, logstash.repo [logstash-5.x] name=Elastic repository for 5.x packages baseurl=https://artifacts.elastic.co/packages/5.x/yum gpgcheck=1 gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch enabled=1 autorefresh=1 type=rpm-md o You can now install Logstash by using the following command: $ sudo yum install logstash
  • 11. Logstash 7 Step 4: Go to the Logstash home directory. Inside the bin folder, run the elasticsearch.bat file in case of windows or you can do the same using the command prompt and through the terminal. In UNIX, run the Logstash file. We need to specify the input source, output source and optional filters. For verifying the installation, you can run it with the basic configuration by using a standard input stream (stdin) as the input source and a standard output stream (stdout) as the output source. You can specify the configuration in the command line also by using –e option. In Windows: > cd logstash-5.0.1/bin > Logstash -e 'input { stdin { } } output { stdout {} }' In Linux: $ cd logstash-5.0.1/bin $ ./logstash -e 'input { stdin { } } output { stdout {} }' Note: in case of windows, you might get an error stating JAVA_HOME is not set. For this, please set it in environment variables to “C:Program FilesJavajre1.8.0_111” or the location where you installed java. Step 5: Default ports for Logstash web interface are 9600 to 9700 are defined in the logstash-5.0.1configlogstash.yml as the http.port and it will pick up the first available port in the given range. We can check if the Logstash server is up and running by browsing http://localhost:9600 or if the port is different and then please check the command prompt or terminal. We can see the assigned port as “Successfully started Logstash API endpoint {:port=>9600}. It will return a JSON object, which contains the information about the installed Logstash in the following way: { "host":"manu-PC", "version":"5.0.1", "http_address":"127.0.0.1:9600", "build_date":"2016-11-11T22:28:04+00:00", "build_sha":"2d8d6263dd09417793f2a0c6d5ee702063b5fada", "build_snapshot":false }
  • 12. Logstash 8 End of ebook preview If you liked what you saw… Buy it from our store @ https://store.tutorialspoint.com